CVE-2008-7006 Information

Description

Free PHP VX Guestbook 1.06 allows remote attackers to bypass authentication and download a backup of the database via a direct request to admin/backupdb.php.

Reference

http://osvdb.org/48156 http://secunia.com/advisories/31850 http://www.securityfocus.com/bid/31174 https://exchange.xforce.ibmcloud.com/vulnerabilities/45150 https://www.exploit-db.com/exploits/6456