CVE-2007-2100

2007-04-1810:00:00

mitre

www.cve.org

AI Score

6.3

Confidence

Low

EPSS

0.011

Percentile

84.5%

JSON

FAC Guestbook 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/Gdb.mdb.

References

secunia.com/advisories/24872

securityreason.com/securityalert/2570

www.securityfocus.com/archive/1/465544/100/0/threaded

www.securityfocus.com/bid/23441

exchange.xforce.ibmcloud.com/vulnerabilities/33600