CVE-2009-4545
Affected software : Logoshows BBS 2.0. Vulnerability : Insufficient access control allows remote attackers to download the database via a direct request to database/globepersonnel.mdb, exposing sensitive information stored under the web root. Root cause : Inadequate access restrictions for a file...