Vulnerabilities

CVE-2005-2677

by Fred · 23/08/2005

ACNews stores the database in a file under the web document root with a db.inc extension and insufficient access control, which allows remote attackers to obtain sensitive information such as the full pathname of the server.

Date published : 2005-08-23

http://securitytracker.com/id?1014749

Similar

Tags: Cybersecurity Alert