CVE-2010-0665

2010-02-19T12:30:01
ID CVE-2010-0665
Type cve
Reporter NVD
Modified 2017-08-16T21:32:03

Description

JAG (Just Another Guestbook) 1.14 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request for jag/database.sql.