Summary
MyBackup is prone to multiple security vulnerabilities. These vulnerabilities include a directory-traversal vulnerability and a arbitrary PHP code execution vulnerability.
An attacker can exploit these vulnerabilities to execute arbitrary php code in the context of the affected site or obtain sensitive information. Other attacks are also possible.
MyBackup 1.4.0 is vulnerable
other versions may also be affected.
References
Severity
Classification
-
CVE CVE-2009-4977, CVE-2009-4978 -
CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P
Related Vulnerabilities