EIP-2026-107268
PRE-CVEFroxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-107268. PoCs published by Dustin Dörr.
AI-analyzed exploit summary This is a writeup describing an information disclosure vulnerability in Froxlor Server Management Panel versions <= 0.9.33.1. The issue arises due to incorrect file permissions on the /logs/ directory, allowing unauthenticated remote attackers to access MySQL credentials stored in sql-error.log.
Description
Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure
Exploits (1)
This is a writeup describing an information disclosure vulnerability in Froxlor Server Management Panel versions <= 0.9.33.1. The issue arises due to incorrect file permissions on the /logs/ directory, allowing unauthenticated remote attackers to access MySQL credentials stored in sql-error.log.