RSS   Vulnerabilities for 'Uguestbook'   RSS

2005-05-03
 
CVE-2005-1425

CWE-264
 

 
Uapplication Uguestbook 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mdb-database/guestbook.mdb.

 

 >>> Vendor: Uapplication 4 Products
Ublog reload
Uguestbook
Uphotogallery
Ublog


Copyright 2024, cxsecurity.com

 

Back to Top