CVE-2008-7080 Information

Description

Team PHP PHP Classifieds Script stores sensitive information under the web root with insufficient access control which allows remote attackers to obtain database credentials via a direct request for admin/backup/datadump.sql.

Reference

http://secunia.com/advisories/32776 http://www.osvdb.org/50153 https://exchange.xforce.ibmcloud.com/vulnerabilities/46803 https://www.exploit-db.com/exploits/7206