5
CVSSv2

CVE-2009-5019

Published: 01/12/2010 Updated: 17/08/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 510
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

Web Wiz NewsPad stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for database/NewsPad.mdb.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

webwiz web wiz newspad 1.0

webwiz web wiz newspad 1.01

webwiz web wiz newspad 1.02

webwiz web wiz newspad 1.03

Exploits

============================================================= NewsPad Database Download Vulnerability ============================================================= ############################################################# # # Exploit Title: NewsPad Database Download Vulnerability # Date: 15/11/2010 # Author: keracker # Software Link: www ...
============================================================================== _ _ _ _ _ _ / \ | | | | / \ | | | | / _ \ | | | | / _ \ | |_| | / ___ \ | |___ | |___ / ___ \ | _ | IN THE NAME OF /_/ ...