An issue exists in Psyprax prior to 3.2.2. The Firebird database is accessible with the default user sysdba and password masterke after installation. This allows any user to access it and read and modify the contents, including passwords. Local database files can be accessed directly as well.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
psyprax psyprax |