CVE-2010-0984
Acidcat CMS 3.5.3 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing credentials via a direct request for databases/acidcat_3.mdb.Enginsight
Vendor | Product | Version |
---|---|---|
acidcat | acidcat_cms | 𝑥 ≤ 3.5.3 |
acidcat | acidcat_cms | 2.1.11 |
acidcat | acidcat_cms | 2.1.12 |
acidcat | acidcat_cms | 2.1.13 |
acidcat | acidcat_cms | 3.3.5 |
acidcat | acidcat_cms | 3.4.0 |
acidcat | acidcat_cms | 3.4.1 |
acidcat | acidcat_cms | 3.4.2 |
acidcat | acidcat_cms | 3.5.0 |
acidcat | acidcat_cms | 3.5.1 |
acidcat | acidcat_cms | 3.5.2 |
Common Weakness Enumeration