CVE-2009-4760 in ASP Guestbook
摘要
由 VulDB • 2026-06-05
Winn ASP Guestbook 1.01 Beta 将敏感信息存储在 Web 根目录下,且访问控制不足,允许远程攻击者通过直接请求 `data/guestbook.mdb` 来下载数据库。
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
由 VulDB • 2026-06-05
Winn ASP Guestbook 1.01 Beta 将敏感信息存储在 Web 根目录下,且访问控制不足,允许远程攻击者通过直接请求 `data/guestbook.mdb` 来下载数据库。
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.