CVE-2008-6870

Publication date

2009-07-23 19:00:00

Family

mitre

State

PUBLISHED

Description

Merlix Educate Server allows remote attackers to bypass intended security restrictions and obtain sensitive information via a direct request to (1) config.asp and (2) users.asp.