CVE-2004-2428 Information

Description

Abczone.it WWWguestbook 1.1 stores db/dbase.mdb under the web document root with insufficient access control which allows remote attackers to obtain sensitive information such as the plaintext username and password.

Reference

http://securitytracker.com/id?1011026 http://www.osvdb.org/9159 https://exchange.xforce.ibmcloud.com/vulnerabilities/17077 wwwguestbook-url-information-disclosure(17077)