Vulnerabilities > Uapplication > Uguestbook > Medium

DATE CVE VULNERABILITY TITLE RISK
2005-05-03 CVE-2005-1425 Permissions, Privileges, and Access Controls vulnerability in Uapplication Uguestbook 1.0
Uapplication Uguestbook 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mdb-database/guestbook.mdb.
network
low complexity
uapplication CWE-264
5.0