CVE-2010-0665

2010-02-19T17:30:00
ID CVE-2010-0665
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:32:00

Description

JAG (Just Another Guestbook) 1.14 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request for jag/database.sql.