CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-3831

The Backup selection in Kailash Nadh boastMachine (formerly bMachine) 3.1 and earlier uses predicable filenames for database backups and stores the files under the web root with insufficient access control, which allows remote attackers to obtain sensitive information by downloading a backup file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://secunia.com/advisories/21066
http://securityreason.com/securityalert/1271
http://securitytracker.com/id?1016515
http://www.acid-root.new.fr/advisories/boastmachine.txt
http://www.securityfocus.com/archive/1/440306/100/0/threaded
http://secunia.com/advisories/21066
http://securityreason.com/securityalert/1271
http://securitytracker.com/id?1016515
http://www.acid-root.new.fr/advisories/boastmachine.txt
http://www.securityfocus.com/archive/1/440306/100/0/threaded

Products affected by CVE-2006-3831

Kailash Nadh » Boastmachine » Version: Any

cpe:2.3:a:kailash_nadh:boastmachine:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-3831

Products

Pricing

Contact Us