CVE-2008-6955

Infireal Mxcamarchive - Information Disclosure

Title source: rule

Description

mxCamArchive 2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain configuration details and passwords via a direct request for archive/config.ini.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ahmadbady · textwebappsphp
https://www.exploit-db.com/exploits/7136

References (5)

Scores

EPSS 0.0225
EPSS Percentile 84.3%

Classification

CWE
CWE-200
Status draft

Affected Products (1)

infireal/mxcamarchive

Timeline

Published Aug 12, 2009
Tracked Since Feb 18, 2026