CVE-2005-3049

Exploit

EPSS 0.72%
Published 24.09.2005 00:03:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

PhpMyFaq 1.5.1 stores data files under the web document root with insufficient access control and predictable filenames, which allows remote attackers to obtain sensitive information via a direct request to the data/tracking[DATE] file.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Phpmyfaq ≫ Phpmyfaq Version1.5.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.72%	0.702

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://marc.info/?l=bugtraq&m=112749230124091&w=2

http://rgod.altervista.org/phpmyfuck151.html

Vendor Advisory

Exploit

http://secunia.com/advisories/16933

http://securitytracker.com/id?1014968

http://www.osvdb.org/19670

http://www.securityfocus.com/bid/14930

https://exchange.xforce.ibmcloud.com/vulnerabilities/22405

https://nvd.nist.gov/vuln/detail/CVE-2005-3049

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-3049

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-3049

EUVD