Lucene search
+L

11 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/03 4:52 p.m.5 views

CVE-2020-37116

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS5.5AI score0.00415EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1225

Malware in sbrugna...

6.4CVSS6.4AI score0.01164EPSS
Exploits0References3
securityvulns
securityvulns
added 2014/12/01 12:0 a.m.54 views

XCloner Wordpress/Joomla! backup Plugin v3.1.1 (Wordpress) v3.5.1 (Joomla!) Vulnerabilities

Title: XCloner Wordpress/Joomla! backup Plugin v3.1.1 Wordpress v3.5.1 Joomla! Vulnerabilities Author: Larry W. Cashdollar, @larry0 Date: 10/17/2014 Download: https://wordpress.org/plugins/xcloner-backup-and-restore/ Download:...

7.7AI score
Exploits0
Patchstack
Patchstack
added 2014/11/10 12:0 a.m.23 views

WordPress XCloner Plugin - Multiple Vulnerabilities

XCloner plugin is prone to multiple vulnerabilities, such as: unauthenticated remote access to backup files via easily guessable file names, arbitrary command execution and authenticated remote file access. Also, clear text MySQL password exposure through HTML text box. Solution Upgrade the plugi...

6.5CVSS1.9AI score0.06197EPSS
Exploits2References1Affected Software1
exploitpack
exploitpack
added 2014/11/10 12:0 a.m.22 views

WordPress Plugin Joomla! Component XCloner - Multiple Vulnerabilities

WordPress Plugin Joomla! Component XCloner - Multiple Vulnerabilities Title: XCloner Wordpress/Joomla! backup Plugin v3.1.1 Wordpress v3.5.1 Joomla! Vulnerabilities Author: Larry W. Cashdollar, @larry0 Date: 10/17/2014 Download: https://wordpress.org/plugins/xcloner-backup-and-restore/ Download:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2014/11/10 12:0 a.m.49 views

WordPress Plugin / Joomla! Component XCloner - Multiple Vulnerabilities

Title: XCloner Wordpress/Joomla! backup Plugin v3.1.1 Wordpress v3.5.1 Joomla! Vulnerabilities Author: Larry W. Cashdollar, @larry0 Date: 10/17/2014 Download: https://wordpress.org/plugins/xcloner-backup-and-restore/ Download:...

7.4AI score
Exploits0
Patchstack
Patchstack
added 2014/11/04 12:0 a.m.18 views

WordPress XCloner Plugin <= 3.1.1 - Multiple Vulnerabilities

There are multiple vulnerabilities in this plugin, such as arbitrary command execution, clear text MySQL password exposure through html text box under configuration panel, MySQL password exposed to process table, database backups exposed to local users due to open file permissions, authenticated...

2.1CVSS1.1AI score0.00865EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2007/10/23 4:46 p.m.2 views

DEBIAN-CVE-2007-5626

makecatalogbackup in Bacula 2.2.5, and probably earlier, sends a MySQL password as a command line argument, and sometimes transmits cleartext e-mail containing this command line, which allows context-dependent attackers to obtain the password by listing the process and its arguments, or by sniffi...

5.5CVSS5.4AI score0.00292EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/11/11 12:0 a.m.28 views

[SA17528] Campsite MySQL Password Exposure Mail Transfer Security Issue

TITLE: Campsite MySQL Password Exposure Mail Transfer Security Issue SECUNIA ADVISORY ID: SA17528 VERIFY ADVISORY: http://secunia.com/advisories/17528/ CRITICAL: Not critical IMPACT: Exposure of sensitive information WHERE: From remote SOFTWARE: Campsite 2.x http://secunia.com/product/6091/...

0.4AI score
Exploits0
Gentoo Linux
Gentoo Linux
added 2004/02/07 12:0 a.m.13 views

PHP setting leaks from .htaccess files on virtual hosts

Background PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Description If the server configuration "php.ini" file has "registerglobals = on" and a request is made to one virtual host which has "phpadminflag...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2001/04/27 12:0 a.m.81 views

iScouter PHP Web Portal System, MySQL Password in clear text

Hi all, I have found that i can easily retrieve MySQL password of the last iScouter PHP Web Portal System. Exploit : www.your-iScouter-web-portal.com/config.inc You can find those lines in clear text: $CFGDBSERVERTYPE = "mySQL"; $CFGDBHOST = "www.your-iScouter-web-portal.com"; $CFGDBUSERNAME =...

7.2AI score
Exploits0
Rows per page
Query Builder