CVE-2008-5592
CVE-2008-5592 affects Nightfall Personal Diary 1.0. The issue is improper access control: sensitive data is stored under the web root, allowing remote attackers to download the database file (users-zza21.mdb) via a direct request. The resulting impact is partial confidentiality loss. The availabl...