CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Merlix: >> Educate Server Security Vulnerabilities

CVE-2008-6870

Merlix Educate Server allows remote attackers to bypass intended security restrictions and obtain sensitive information via a direct request to (1) config.asp and (2) users.asp.

CVSS Score

5.0

EPSS Score

0.02

Published

2009-07-23

CVE-2008-6871

Merlix Educate Server stores db.mdb under the web root with insufficient access control, which allows remote attackers to obtain unspecified sensitive information via a direct request.

CVSS Score

5.0

EPSS Score

0.028

Published

2009-07-23

Page 1

Vulnerabilities

Vulnerable Software

Merlix: >> Educate Server Security Vulnerabilities

Products

Pricing

Contact Us