CVE-2008-0135
Snitz Forums 2000 3.4.06 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum/snitz_forums_2000.mdb.Enginsight
Vendor | Product | Version |
---|---|---|
snitz_communications | snitz_forums_2000 | 𝑥 ≤ 3.4.06 |
snitz_communications | snitz_forums_2000 | 3.0 |
snitz_communications | snitz_forums_2000 | 3.1 |
snitz_communications | snitz_forums_2000 | 3.1 |
snitz_communications | snitz_forums_2000 | 3.2.03 |
snitz_communications | snitz_forums_2000 | 3.3 |
snitz_communications | snitz_forums_2000 | 3.3.01 |
snitz_communications | snitz_forums_2000 | 3.3.02 |
snitz_communications | snitz_forums_2000 | 3.3.03 |
snitz_communications | snitz_forums_2000 | 3.4.02 |
snitz_communications | snitz_forums_2000 | 3.4.03 |
snitz_communications | snitz_forums_2000 | 3.4.04 |
snitz_communications | snitz_forums_2000 | 3.4.05 |
Common Weakness Enumeration