← Volver a CVEs
CVE-2008-5853
N/ADescripcion
Chilek Content Management System (aka ChiCoMaS) 2.0.4 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) obtain database credentials via a direct request for config.inc or (2) read database backups via a request for a backup/ URI.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado1/6/2009
Ultima modificacion4/23/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
chicomas:chicomas
Debilidades (CWE)
CWE-264
Referencias
http://secunia.com/advisories/30080(cve@mitre.org)
http://securityreason.com/securityalert/4872(cve@mitre.org)
http://www.bugreport.ir/index_59.htm(cve@mitre.org)
http://www.securityfocus.com/archive/1/499458/100/0/threaded(cve@mitre.org)
https://www.exploit-db.com/exploits/7532(cve@mitre.org)
http://secunia.com/advisories/30080(af854a3a-2127-422b-91ae-364da2661108)
http://securityreason.com/securityalert/4872(af854a3a-2127-422b-91ae-364da2661108)
http://www.bugreport.ir/index_59.htm(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/499458/100/0/threaded(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/7532(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.