RSS   Vulnerabilities for 'Web wiz guestbook'   RSS

2009-04-02
 
CVE-2003-1571

 

 
Web Wiz Guestbook 6.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database and obtain sensitive information via a direct request for database/WWGguestbook.mdb. NOTE: it was later reported that 8.21 is also affected.

 

 >>> Vendor: Webwizguide 4 Products
Web wiz forums
Web wiz guestbook
Web wiz rich text editor
Web wiz forum


Copyright 2024, cxsecurity.com

 

Back to Top