CVE-2008-5572 Information
Feb 14, 2021
cve
Description
Professional Download Assistant 0.1 stores sensitive information under the web root with insufficient access control which allows remote attackers to download the database file via a direct request for database/downloads.mdb.
Reference
http://osvdb.org/50547 http://secunia.com/advisories/33030 http://securityreason.com/securityalert/4748 https://exchange.xforce.ibmcloud.com/vulnerabilities/47148 https://www.exploit-db.com/exploits/7371
Share on: