AI Score
Confidence
Low
EPSS
Percentile
80.5%
fipsForum 2.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for _database/forumFips.mdb.
packetstormsecurity.org/1001-exploits/fipsforum-disclose.txt
www.exploit-db.com/exploits/11361
exchange.xforce.ibmcloud.com/vulnerabilities/56183