Vulnerabilities > Myktools
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-05-28 | CVE-2008-6815 | Improper Authentication vulnerability in Myktools 2.4 mykdownload.php in MyKtools 2.4 does not require administrative authentication, which allows remote attackers to read a database backup by making a direct request, and then sending an unspecified request to the download page for the backup. | 5.0 |
2009-02-25 | CVE-2008-6273 | Path Traversal vulnerability in Myktools 3.0 Directory traversal vulnerability in configuration_script.php in MyKtools 3.0 allows remote authenticated administrators to include and execute arbitrary local files via a .. | 6.0 |