Vulnerabilities > Robs Projects > Digital Sales IPN > nil
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-01-29 | CVE-2009-0328 | Permissions, Privileges, and Access Controls vulnerability in Robs-Projects Digital Sales IPN NIL ROBS-PROJECTS Digital Sales IPN (aka DS-IPN.NET or DS-IPN Paypal Shop) stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request for Database/Sales.mdb. | 5.0 |