Security Advisory

CVE-2008-5925

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-01-21 18:00:00

Last updated 2024-09-16 23:26:41

Assigner mitre

State PUBLISHED

Description

ASP-DEv XM Events Diary stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for diary.mdb.

← Browse all CVEs View on cve.org ↗