Webwizguide: >> Web Wiz Guestbook >> 6.0 Security Vulnerabilities
Web Wiz Guestbook 6.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database and obtain sensitive information via a direct request for database/WWGguestbook.mdb. NOTE: it was later reported that 8.21 is also affected.
CVSS Score
5.0
EPSS Score
0.028
Published
2009-04-02