Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/01/2001 Updated: 19/12/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Basilix Webmail 0.9.7beta, and possibly other versions, stores *.class and *.inc files under the document root and does not restrict access, which could allows remote malicious users to obtain sensitive information such as MySQL passwords and usernames from the mysql.class file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
basilix basilix webmail 0.9.7_beta

source: wwwsecurityfocuscom/bid/2198/info A vulnerability has been reported in basilix webmail v 097b Basilix Webmail ships with several configuration files that have the file extensions 'class' and 'inc' Among other things, these files contain the authentication information for the MySQL database that the product uses These fil ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/155897 http://www.securityfocus.com/bid/2198 https://exchange.xforce.ibmcloud.com/vulnerabilities/5934 https://nvd.nist.gov https://www.exploit-db.com/exploits/20538/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2001-1044

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect