PHP Web Statistik 1.4 stores the stat.cfg file under the web root with insufficient access control, which allows remote attackers to obtain sensitive information such as statistics and the log directory location, possibly including the logdb.dta file.
References
Configurations
History
No history.
Information
Published : 2005-12-05 11:03
Updated : 2024-02-04 16:52
NVD link : CVE-2005-4013
Mitre link : CVE-2005-4013
CVE.ORG link : CVE-2005-4013
JSON object : View
Products Affected
php_web
- statistik
CWE