NewsTraXor Website Management Script 2.9 Beta - Database Disclosure

EDB-ID:

24039

CVE:

N/A
E-DB Verified:

Author:

CyberTal0n

Type:

webapps
Exploit:   /  

Platform:

ASP

Published:

2004-04-22
Vulnerable App: 
source: https://www.securityfocus.com/bid/10194/info

Reportedly NewsTraXor is affected by a remote database disclosure vulnerability. This issue is due to a design error that allows the database file to be globally readable.

This issue may allow a remote attacker to gain unauthorized administrative access to the affected web application.

www.example.com/news/Dbase/nTrax.mdb
Tags:
Advisory/Source: Link
Downloads Certifications Training Professional Services
Kali Linux OSCP Penetration Testing with Kali Linux (PWK) Penetration Testing
Kali NetHunter OSWP Offensive Security Wireless Attacks (WiFu) Advanced Attack Simulation
Kali Linux Revealed Book OSCE Cracking the Perimeter (CTP) Application Security Assessment
OSEE Metasploit Unleashed (MSFU)
OSWE Free Kali Linux Training
KLCP
Kali Linux Kali NetHunter Kali Linux Revealed Book
OSCP OSWP OSCE OSEE OSWE KLCP
Penetration Testing with Kali Linux (PWK) Offensive Security Wireless Attacks (WiFu) Cracking the Perimeter (CTP) Metasploit Unleashed (MSFU) Free Kali Linux training
Penetration Testing Advanced Attack Simulation Application Security Assessment