RSS   Vulnerabilities for 'Accms'   RSS

2009-08-25
 
CVE-2008-7069

CWE-200
 

 
All Club CMS (ACCMS) 0.0.2 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain database configuration information, including credentials, via a direct request to accms.dat.

 


Copyright 2017, cxsecurity.com