2 matches found
CVE-2017-7314
CVE-2017-7314 affects Personify360 e-Business, versions 7.5.2–7.6.1. While creating a new role at /TabId/275, an attacker could access a list of database tables and their columns, revealing schema information due to improper access restrictions. ExploitDB evidence documents a PoC showing schema d...
Personify360 7.5.27.6.1 - Improper Database Schema Access Restrictions
Personify360 7.5.27.6.1 - Improper Database Schema Access Restrictions Exploit Title: Discover all tables and columns in database when creating new customer role Date: 3/29/2017 Exploit Author: Pesach Zirkind Vendor Homepage: https://personifycorp.com/ Version: 7.5.2 - 7.6.1 Tested on: Windows al...