Description
Triggering an error page of the import process in Yakamara Media Redaxo CMS version 5.12.1 allows an authenticated CMS user has to alternate the files of a vaild file backup. This leads of leaking the database credentials in the environment variables.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2021-25816 | Triggering an error page of the import process in Yakamara Media Redaxo CMS version 5.12.1 allows an authenticated CMS user has to alternate the files of a vaild file backup. This leads of leaking the database credentials in the environment variables. |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T02:06:42.555Z
Reserved: 2021-08-23T00:00:00.000Z
Link: CVE-2021-39458
No data.
Status : Modified
Published: 2021-09-09T12:15:09.870
Modified: 2026-06-17T04:03:42.493
Link: CVE-2021-39458
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-209
Generation of Error Message Containing Sensitive Information
EUVD