Modxcms: >> Filedownload >> 2.0 Security Vulnerabilities
download.php in the MuddyDogPaws FileDownload snippet before 2.5 for MODx allows remote attackers to download arbitrary files, as demonstrated by downloading config.inc.php to obtain database credentials.
CVSS Score
7.5
EPSS Score
0.007
Published
2007-02-01