CVE-2008-6053 Information

Description

PreProjects Pre Resume Submitter stores onlineresume.mdb under the web root with insufficient access control which allows remote attackers to obtain passwords via a direct request.

Reference

http://packetstorm.linuxsecurity.com/0812-exploits/preresume-disclose.txt http://secunia.com/advisories/33197 https://exchange.xforce.ibmcloud.com/vulnerabilities/47438