26 matches found
CVE-2007-5260
ASP-CMS 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request for mdb-database/ASP-CMSv100.mdb...
Improper access control
ASP-CMS 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request for mdb-database/ASP-CMSv100.mdb...
CVE-2007-5260
ASP-CMS 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request for mdb-database/ASP-CMSv100.mdb...
CVE-2007-5260
ASP-CMS 1.0 stores sensitive information under the web root with insufficient access control, allowing remote attackers to download the database (mdb-database/ASP-CMS_v100.mdb) containing usernames and passwords. The available sources describe this exposure but do not provide exploitation steps o...
aspcms-mdb.txt
ASP-CMS version 1 default password location. http://asp-cms.sourceforge.net/ A vulnerability exists within the content management system ASP-CMS that allows a remote user to see the username and password of the content management system itsself. the user/pass combo along with all the other settin...
ASP-CMS version 1 default password location.
ASP-CMS version 1 default password location. http://asp-cms.sourceforge.net/ A vulnerability exists within the content management system ASP-CMS that allows a remote user to see the username and password of the content management system itsself. the user/pass combo along with all the other settin...