Vulnerabilities (CVE)

Filtered by vendor Aspapp Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6147 1 Aspapp 1 Forumapp 2024-11-21 5.0 MEDIUM N/A
ForumApp 3.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) data/8690.mdb or (2) data/8690BAK.mdb.