CVE-2007-2101 Information

Description

FAC Guestbook 3.01 stores sensitive information under the web root with insufficient access control which allows remote attackers to download a database via a direct request for db/gbdb.mdb. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Reference

http://secunia.com/advisories/24872 http://www.securityfocus.com/bid/23441 https://exchange.xforce.ibmcloud.com/vulnerabilities/33600