MidnightBSD

Advisories for the-ghost

CVE-2010-1066 MEDIUM

AR Web Content Manager (AWCM) 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for control/db_backup.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
the-ghost ar_web_content_manager 2.1