CVE-2009-4760

2010-03-29T14:30:00
ID CVE-2009-4760
Type cve
Reporter NVD
Modified 2017-09-18T21:30:04

Description

Winn ASP Guestbook 1.01 Beta stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/guestbook.mdb.