Vulnerability Details CVE-2006-1718
Magus Perde Clever Copy 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to view the database username and password via a direct request for connect.inc.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.05
EPSS Ranking 89.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://advisories.echo.or.id/adv/adv28-K-159-2006.txt
- http://secunia.com/advisories/19579
- http://www.securityfocus.com/archive/1/430369/100/0/threaded
- http://www.securityfocus.com/bid/17461
- http://www.vupen.com/english/advisories/2006/1316
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25720
- http://advisories.echo.or.id/adv/adv28-K-159-2006.txt
- http://secunia.com/advisories/19579
- http://www.securityfocus.com/archive/1/430369/100/0/threaded
- http://www.securityfocus.com/bid/17461
- http://www.vupen.com/english/advisories/2006/1316
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25720
Products affected by CVE-2006-1718
-
cpe:2.3:a:clever_copy:clever_copy:*
-
cpe:2.3:a:clever_copy:clever_copy:1.0.0
-
cpe:2.3:a:clever_copy:clever_copy:1.0.1
-
cpe:2.3:a:clever_copy:clever_copy:1.0.2
-
cpe:2.3:a:clever_copy:clever_copy:1.0.3
-
cpe:2.3:a:clever_copy:clever_copy:2.0
-
cpe:2.3:a:clever_copy:clever_copy:2.0a
-
cpe:2.3:a:clever_copy:clever_copy:23.0