CVE-2007-0659

download.php in the MuddyDogPaws FileDownload snippet before 2.5 for MODx allows remote attackers to download arbitrary files, as demonstrated by downloading config.inc.php to obtain database credentials.
Configurations

Configuration 1

cpe:2.3:a:modxcms:filedownload:2.0:*:*:*:*:*:*:*
cpe:2.3:a:modxcms:filedownload:1.7:*:*:*:*:*:*:*

Information

Published : 2007-02-01 10:28

Updated : 2011-03-08 02:50


NVD link : CVE-2007-0659

Mitre link : CVE-2007-0659

Products Affected