Vulnerabilities > Takempis

DATE CVE VULNERABILITY TITLE RISK
2009-01-12 CVE-2008-5886 Permissions, Privileges, and Access Controls vulnerability in Takempis Discussion web 4.0
TAKempis Discussion Web 4.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing a password via a direct request for _private/discussion.mdb.
network
low complexity
takempis CWE-264
5.0