Vulnerabilities > Minitdesign > Virtual Guestbook
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-10 | CVE-2009-0498 | Permissions, Privileges, and Access Controls vulnerability in Minitdesign Virtual Guestbook 2.1 Virtual GuestBook (vgbook) 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to guestbook.mdb. | 5.0 |