CVE-2008-6054 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2008-6054

CWE

https://cwe.mitre.org/data/definitions/264.html

PreProjects Pre Courier and Cargo Business stores dbcourior.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.

Affected Software

Name	Vendor	Start Version	End Version
Pre_courier_and_cargo_business	Preprojects.com	*	*

References

http://packetstorm.linuxsecurity.com/0812-exploits/precourier-disclose.txt
http://secunia.com/advisories/33197
https://exchange.xforce.ibmcloud.com/vulnerabilities/47436
http://packetstorm.linuxsecurity.com/0812-exploits/precourier-disclose.txt
http://secunia.com/advisories/33197
https://exchange.xforce.ibmcloud.com/vulnerabilities/47436