Vulnerability Details CVE-2007-2101
FAC Guestbook 3.01 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/gbdb.mdb. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.7%
CVSS Severity
CVSS v2 Score 10.0
References
Products affected by CVE-2007-2101
-
cpe:2.3:a:fac_guestbook:fac_guestbook:3.01