CVE-2008-6051

2009-02-0415:10:00

mitre

www.cve.org

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.3%

JSON

MetaCart Free stores metacart.mdb under the web root with insufficient access control, which allows remote attackers to obtain usernames and passwords via a direct request.

References

www.securityfocus.com/archive/1/499123/100/0/threaded