4 matches found
CVE-2008-5886
TAKempis Discussion Web 4.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing a password via a direct request for private/discussion.mdb. NOTE: some of these details are obtained from third part...
Improper access control
TAKempis Discussion Web 4.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing a password via a direct request for private/discussion.mdb. NOTE: some of these details are obtained from third part...
CVE-2008-5886
The CVE-2008-5886 issue affects TAKempis Discussion Web 4.0, where sensitive information is stored under the web root with insufficient access control. An attacker can directly request the file _private/discussion.mdb to download a password-containing database, exposing credentials and sensitive ...
CVE-2008-5886
TAKempis Discussion Web 4.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing a password via a direct request for private/discussion.mdb. NOTE: some of these details are obtained from third part...