CVE-2012-5892 in Havaliteinformazioni

Riassunto

di MITRE

Havalite CMS 1.1.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the configuration database via a direct request for data/havalite.db3.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

17/11/2012

Divulgazione

17/11/2012

Moderazione

accettato

CPE

pronto

EPSS

0.01480

KEV

no

Attività

molto basso

Settore

Lawfirm, Hostingprovider, ...

Fonti

MITREhttps://www.cve.org/CVERecord?id=CVE-2012-5892
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2012-5892
CVE Detailshttps://www.cvedetails.com/cve/CVE-2012-5892/

PrecedenteVisione D'ensembleIl prossimo

Do you know our Splunk app?

Download it now for free!