Dmx Forum 2.1a allows remote attackers to obtain username and password information via a direct request to pops/edit.php with a modified membre parameter.
Max CVSS
5.0
EPSS Score
0.98%
Published
2006-06-12
Updated
2017-07-20
Dmx Forum 2.1a stores _includes/bd.inc under the web root with insufficient access control, which allows remote attackers to obtain database username and password information.
Max CVSS
5.0
EPSS Score
0.59%
Published
2006-06-12
Updated
2011-03-08
2 vulnerabilities found