2 matches found
CVE-2008-6008
hyBook Guestbook Script stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing a password via a direct request for hyBook.mdb...
CVE-2008-6008
CVE-2008-6008 affects the hyBook Guestbook Script. The issue is insufficient access control that stores sensitive information under the web root, enabling remote attackers to download a database file (hyBook.mdb) via a direct request. The database reportedly contains a password. The connected doc...