MidnightBSD

Advisories for lebisoft

CVE-2010-1065 MEDIUM

Lebisoft Ziyaretci Defteri 7.4 and 7.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/lebisoft.mdb.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
lebisoft ziyaretci_defteri 7.4
lebisoft ziyaretci_defteri 7.5