header-logo
Suggest Exploit
vendor:
RunCMS
by:
SecurityFocus
2.6
CVSS
LOW
Information Disclosure
200
CWE
Product Name: RunCMS
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2005

RunCMS Information Disclosure Vulnerability

RunCMS is reportedly affected by an information disclosure vulnerability. This issue is due to a failure in the application to secure sensitive information. Exploitation of this vulnerability could lead to the disclosure of database configuration details, including the database name, user name and password.

Mitigation:

Ensure that sensitive information is properly secured and access to it is restricted.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/12848/info

RunCMS is reportedly affected by an information disclosure vulnerability. This issue is due to a failure in the application to secure sensitive information.

Exploitation of this vulnerability could lead to the disclosure of database configuration details, including the database name, user name and password.

RunCMS was formerly named E-Xoops. 

http://www.example.com/[runcms]/class/debug/highlight.php?file=[runcmsinstallationpath]\mainfile.php&line=151#151

Navigation

Suggest Exploit

Services By CQR