CVE-2008-0297

Loading...

General

Score:5.0/10.0
Severity:Medium
Category:Information Leak / Disclosure
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:None
Availability:None

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 17/01/08 - Updated on 29/09/17

Description

PhotoKorn allows remote attackers to obtain database credentials via a direct request to update/update3.php, which includes the credentials in its output.

Category: Information Leak / Disclosure

CWE-200 (Information Exposure)
An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.

Security Notices

US National Vulnerability DatabaseCVE-2008-0297

Exploits

Exploit-DBEDB-4897

Relative technologies

VendorProduct
keil_softwarephotokorn

Share this vulnerability with:

Twitter Facebook LinkedIn Mail