Lebisoft Ziyaretci Defteri 7.4 and 7.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/lebisoft.mdb.
CPE | Name | Operator | Version |
---|---|---|---|
ziyaretci_defteri | eq | 7.4 | |
ziyaretci_defteri | eq | 7.5 |