CVE-2008-0249

PHP Webquest 2.6 is affected by a vulnerability where a direct request to admin/backup_phpwebquest.php leaks database credentials in an error message if a call to /usr/bin/mysqldump fails. This allows remote attackers to retrieve credentials in affected environments. The issue is tied to an error...