download.php in the MuddyDogPaws FileDownload snippet before 2.5 for MODx allows remote attackers to download arbitrary files, as demonstrated by downloading config.inc.php to obtain database credentials.
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 02:00
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2007-02-01 22:28
Updated : 2024-02-28 11:01
NVD link : CVE-2007-0659
Mitre link : CVE-2007-0659
CVE.ORG link : CVE-2007-0659
JSON object : View
Products Affected
modxcms
- filedownload
CWE