Predictable Filename Vulnerability in PHP-Fusion 5.0 and 6.0
CVE-2005-2075 · MEDIUM Severity
AV:N/AC:L/AU:N/C:P/I:N/A:N
PHP-Fusion 5.0 and 6.0 stores the database file with a predictable filename under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to the filename in the administration/db_backups directory in PHP-Fusion 6.0 or the fusion_admin/db_backups directory in 5.0.
Learn more about our Web App Pen Testing.