Vulnerability assessments found that MySQL database credentials could be discovered through improper configuration or enumeration, allowing testers to gain direct access to the database and retrieve user credentials. Privilege Escalation:
For more information on this exploit, I recommend checking: seeddms 5.1.22 exploit