CVE-2008-6054 Information

Description

PreProjects Pre Courier and Cargo Business stores dbcourior.mdb under the web root with insufficient access control which allows remote attackers to obtain passwords via a direct request.

Reference

http://packetstorm.linuxsecurity.com/0812-exploits/precourier-disclose.txt http://secunia.com/advisories/33197 https://exchange.xforce.ibmcloud.com/vulnerabilities/47436