RSS   Vulnerabilities for 'Asp guestbook'   RSS

2010-03-29
 
CVE-2009-4760

CWE-264
 

 
Winn ASP Guestbook 1.01 Beta stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/guestbook.mdb.

 

 >>> Vendor: WINN 2 Products
Winn guestbook
Asp guestbook


Copyright 2017, cxsecurity.com