RSS   Vulnerabilities for 'Aspired2poll'   RSS

2009-03-02
 
CVE-2008-6354

CWE-264
 

 
The Net Guys ASPired2poll stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request to ASPired2poll.mdb.

 

 >>> Vendor: Thenetguys 3 Products
Aspired2poll
Aspired2protect
Aspired2quote


Copyright 2024, cxsecurity.com

 

Back to Top