Lucene search
K

4 matches found

CVE
CVE
added 2005/02/26 5:0 a.m.52 views

CVE-2004-1724

CVE-2004-1724 affects PHP-Fusion 4.0 where the ReadMe First.txt instructs setting fusion_admin/db_backups to 777. This world-writable directory enables remote attackers to download or view backups, which have easily guessable filenames and contain administrator usernames and passwords. Root cause...

7.5CVSS6.6AI score0.06934EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2005/02/26 5:0 a.m.22 views

CVE-2004-1724

The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusionadmin/dbbackups directory to world read/write/execute 777, which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator userna...

6.5AI score0.06934EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2004/08/23 12:0 a.m.27 views

PHP-Fusion Database Backup Disclosure

A vulnerability exists in the remote version of PHP-Fusion that may allow an attacker to obtain a dump of the remote database. PHP-Fusion has the ability to create database backups and store them on the web server, in the directory '/fusionadmin/dbbackups/'. Since there is no access control on th...

7.5CVSS5.6AI score0.06934EPSS
Exploits1References2
NVD
NVD
added 2004/08/18 4:0 a.m.20 views

CVE-2004-1724

The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusionadmin/dbbackups directory to world read/write/execute 777, which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator userna...

7.5CVSS6.5AI score0.06934EPSS
Exploits1References4
Rows per page
Query Builder