Vulnerabilities > CVE-2007-2100 - Information Disclosure vulnerability in FAC Guestbook FAC Guestbook 2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
FAC Guestbook 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/Gdb.mdb.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |