CVE-2004-2428 in WWWguestbookinfo

Summary

Abczone.it WWWguestbook 1.1 stores db/dbase.mdb under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as the plaintext username and password.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Reservation

08/18/2005

Disclosure

12/31/2004

Moderation

VulDB entry created

Entries

VDB-23317

CPE

ready

CWE

CWE-312 (Confirmed)

CVSS

5.3

EPSS

0.00408

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-2428
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-2428
CVE Details	https://www.cvedetails.com/cve/CVE-2004-2428/

◂ Previous Overview Next ▸