exploitDog

CVE-2009-1495

Опубликовано: 01 мая 2009

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb.

Ссылки

http://secunia.com/advisories/34648
Vendor Advisory
https://www.exploit-db.com/exploits/8374
http://secunia.com/advisories/34648
Vendor Advisory
https://www.exploit-db.com/exploits/8374

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:webfileexplorer:web_file_explorer:3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04615

Низкий

5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-ff3r-2cx5-975m

github

почти 4 года назад

Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb.

EPSS

Процентиль: 89%

0.04615

Низкий

5 Medium

CVSS2

Дефекты

CWE-264