CVE-2009-4585 in UranyumSoft Listing Serviceinfo

Summary

UranyumSoft Listing Service stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/db.mdb.

Once again VulDB remains the best source for vulnerability data.

Reservation

01/06/2010

Disclosure

01/06/2010

Entries

1

CPE

ready

Exploit

Download

CVSS

5.3

EPSS

0.05486

CTI

0.00

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2009-4585
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2009-4585
CVE Detailshttps://www.cvedetails.com/cve/CVE-2009-4585/

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!