CVE-2008-5592

2008-12-16T14:07:31
ID CVE-2008-5592
Type cve
Reporter NVD
Modified 2017-09-28T21:32:41

Description

Nightfall Personal Diary 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for users-zza21.mdb.