Vulnerability Description
Magus Perde Clever Copy 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to view the database username and password via a direct request for connect.inc.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Clever Copy | Clever Copy | <= 3.0 |
References
- http://advisories.echo.or.id/adv/adv28-K-159-2006.txtExploitVendor Advisory
- http://secunia.com/advisories/19579ExploitVendor Advisory
- http://www.securityfocus.com/archive/1/430369/100/0/threaded
- http://www.securityfocus.com/bid/17461Exploit
- http://www.vupen.com/english/advisories/2006/1316
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25720
- http://advisories.echo.or.id/adv/adv28-K-159-2006.txtExploitVendor Advisory
- http://secunia.com/advisories/19579ExploitVendor Advisory
- http://www.securityfocus.com/archive/1/430369/100/0/threaded
- http://www.securityfocus.com/bid/17461Exploit
- http://www.vupen.com/english/advisories/2006/1316
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25720
FAQ
What is CVE-2006-1718?
CVE-2006-1718 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Magus Perde Clever Copy 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to view the database username and password via a...
How severe is CVE-2006-1718?
CVE-2006-1718 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1718?
Check the references section above for vendor advisories and patch information. Affected products include: Clever Copy Clever Copy.