CVE-2013-2562

N/A

Descricao

Mambo CMS 4.6.5 stores the MySQL database password in cleartext in the document root, which allows local users to obtain sensitive information via unspecified vectors.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado6/9/2014

Ultima modificacao4/12/2025

Fontenvd

Avistamentos honeypot0

Produtos afetados

mambo-foundation:mambo_cms

Fraquezas (CWE)

CWE-255

Referencias

http://packetstormsecurity.com/files/108462/mambocms465-permdosdisclose.txt(cve@mitre.org)

http://seclists.org/oss-sec/2013/q1/689(cve@mitre.org)

http://www.vapid.dhs.org/advisories/mambo_cms_4.6.5.html(cve@mitre.org)

http://packetstormsecurity.com/files/108462/mambocms465-permdosdisclose.txt(af854a3a-2127-422b-91ae-364da2661108)

http://seclists.org/oss-sec/2013/q1/689(af854a3a-2127-422b-91ae-364da2661108)

http://www.vapid.dhs.org/advisories/mambo_cms_4.6.5.html(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.