CVE-2010-0965
CVE-2010-0965 describes improper access control on a web-facing application where a database file siparis.mdb is stored under the web root, allowing remote attackers to directly download the database. The available documents confirm the vulnerability vector (direct access to siparis.mdb) and the ...