CVE-2006-6350

2006-12-0701:00:00

mitre

www.cve.org

6.6 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.0%

JSON

listpics 5 stores sensitive data under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for listpics.mdb.

References

secunia.com/advisories/23210

www.securityfocus.com/archive/1/453416/100/0/threaded

www.vupen.com/english/advisories/2006/4847

exchange.xforce.ibmcloud.com/vulnerabilities/30713