Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2006-08-31	CVE-2006-4487	Information Disclosure vulnerability in Dupoll 3.0/3.1 DUware DUpoll 3.0 and 3.1 stores _private/Dupoll.mdb under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as usernames and passwords. network low complexity duware	5.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.