Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6199

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2008-6199
Last Modified 20 Feb 2009 12:00:00
Published 19 Feb 2009 07:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-6199

Summary

2532designs 2532|Gigs 1.2.2 and earlier allows remote attackers to trigger a backup and obtain sensitive information via a direct request to backup.php, which creates backup.sql under the web root with insufficient access control.

Vulnerable Systems

Application

  • 2532gigs 1.2.1

  • 2532gigs 1.2.2


References

XF - 2532gigs-backup-information-disclosure(41912)

MILW0RM - 5465


Last Updated: 27 May 2016 10:49:06