3 matches found
CVE-2009-4766
YP Portal MS-Pro Surumu aka MS-Pro Portal Scripti 1.0 and 1.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for galeri/database/db.mdb...
CVE-2009-4766
YP Portal MS-Pro Surumu aka MS-Pro Portal Scripti 1.0 and 1.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for galeri/database/db.mdb...
CVE-2009-4766
The CVE-2009-4766 entry concerns YP Portal MS-Pro Surumu (MS-Pro Portal Scripti) versions 1.0 and 1.2. The issue is improper access control that stores sensitive data under the web root, enabling remote attackers to retrieve the database file galeri/database/db.mdb via a direct request. Connected...