← back
CVE-2021-39458

CVE-2021-39458

EPSS 1.2%
Triggering an error page of the import process in Yakamara Media Redaxo CMS version 5.12.1 allows an authenticated CMS user has to alternate the files of a vaild file backup. This leads of leaking the database credentials in the environment variables.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/evildrummer/CVE-2021-XYZ2https://github.com/evildrummer/MyOwnCVEs/tree/main/CVE-2021-39458