CVE-2009-4799

2010-04-22T14:30:00
ID CVE-2009-4799
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:30:00

Description

Diskos CMS 6.x stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) artikler_prod.mdb or (2) medlemmer.mdb.