PhpMyFaq 1.5.1 stores data files under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain sensitive information via a direct request to the data/tracking[DATE] file.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2005-09-23T04:00:00
Updated: 2024-08-07T22:53:30.414Z
Reserved: 2005-09-23T00:00:00
Link: CVE-2005-3049

No data.

Status : Modified
Published: 2005-09-24T00:03:00.000
Modified: 2024-11-21T00:01:00.683
Link: CVE-2005-3049

No data.