Vulnerabilities > Funscripts

DATE CVE VULNERABILITY TITLE RISK
2009-04-02 CVE-2008-6580 Permissions, Privileges, and Access Controls vulnerability in Funscripts RED Reservations
The Red_Reservations script for ColdFusion stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database via a direct request to (1) makered.mdb and (2) makered97.mdb.
network
low complexity
funscripts CWE-264
5.0
5.0