Vulnerabilities

CVE-2014-9702

by Fred · 01/06/2020

system/classes/DbPDO.php in Cmfive through 2015-03-15, when database connectivity malfunctions, allows remote attackers to obtain sensitive information (username and password) via any request, such as a password reset request.

Date published : 2020-06-01

https://www.justanotherhacker.com/2016/09/jahx161_-_cmfive_database_credential_disclosure.html

Related

Tags: Cybersecurity Alert