Vulnerabilities > Duware > Dupoll

DATE CVE VULNERABILITY TITLE RISK
2006-08-31 CVE-2006-4487 Information Disclosure vulnerability in Dupoll 3.0/3.1
DUware DUpoll 3.0 and 3.1 stores _private/Dupoll.mdb under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as usernames and passwords.
network
low complexity
duware
5.0