VYPR
Unrated severityNVD Advisory· Published Aug 18, 2004· Updated Jun 16, 2026

CVE-2004-1724

CVE-2004-1724

Description

The ReadMe First.txt file in PHP-Fusion 4.0 instructs users to set the permissions on the fusion_admin/db_backups directory to world read/write/execute (777), which allows remote attackers to download or view database backups, which have easily guessable filenames and contain the administrator username and password.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:php_fusion:php_fusion:4.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:php_fusion:php_fusion:4.0:*:*:*:*:*:*:*
    • (no CPE)range: <=4.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.