Vulnerability Details CVE-2008-6054
PreProjects Pre Courier and Cargo Business stores dbcourior.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://packetstorm.linuxsecurity.com/0812-exploits/precourier-disclose.txt
- http://secunia.com/advisories/33197
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47436
- http://packetstorm.linuxsecurity.com/0812-exploits/precourier-disclose.txt
- http://secunia.com/advisories/33197
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47436
Products affected by CVE-2008-6054
-
cpe:2.3:a:preprojects.com:pre_courier_and_cargo_business:*