KhaledMuratList stores sensitive data under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) CL2F9R1A2C1N.mdb or (2) Data2F9R1A2C1N.mdb.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-12-07T01:00:00
Updated: 2024-08-07T20:26:45.557Z
Reserved: 2006-12-06T00:00:00
Link: CVE-2006-6351
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-12-07T01:28:00.000
Modified: 2018-10-17T21:47:52.173
Link: CVE-2006-6351
Redhat
No data.