Vulnerabilities (CVE)

Filtered by vendor Xs4all Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-0665 1 Xs4all 1 Jag 2024-11-21 5.0 MEDIUM N/A
JAG (Just Another Guestbook) 1.14 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request for jag/database.sql.