CVE-2008-4183

IntegraMOD 1.4.x - Unauthenticated Sensitive Information Exposure via Backup File Download

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4183. PoCs published by TheJT.

AI-analyzed exploit summary This is a writeup describing an information disclosure vulnerability in IntegraMOD 1.4.x, where the backup folder is accessible without authentication, allowing attackers to download database backups.

Description

IntegraMOD 1.4.x stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a backup via a direct request to a backup/backup-yyyy-dd-mm.sql filename.

Exploits (1)

exploitdb WRITEUP VERIFIED
by TheJT · textwebappsphp
https://www.exploit-db.com/exploits/6390

This is a writeup describing an information disclosure vulnerability in IntegraMOD 1.4.x, where the backup folder is accessible without authentication, allowing attackers to download database backups.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: IntegraMOD 1.4.x
No auth needed
Prerequisites: Network access to the target web server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Various Sources x_refsource_confirm
http://www.integramod.com/forum/viewtopic.php?f=3&t=5089
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/31149
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/4300
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/6390
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/45096
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31749

Scores

EPSS 0.1028
EPSS Percentile 93.3%

Details

CWE
CWE-200
Status published
Products (1)
integramod/integramod 1.4
Published Sep 23, 2008
Tracked Since Feb 18, 2026