CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-2100

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1560%
EPSS Percentile38.79th
Published2007年4月18日
Last Modified2026年4月23日

Vulnerability Description

FAC Guestbook 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/Gdb.mdb.

Affected Platforms (CPE)

📦
Fac Guestbook

Fac Guestbook

= 2.0

References & Advisories

🔗 http://secunia.com/advisories/24872
🔗 http://securityreason.com/securityalert/2570
🔗 http://www.securityfocus.com/archive/1/465544/100/0/threaded
🔗 http://www.securityfocus.com/bid/23441
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/33600
🔗 http://secunia.com/advisories/24872
🔗 http://securityreason.com/securityalert/2570
🔗 http://www.securityfocus.com/archive/1/465544/100/0/threaded

相關漏洞威脅

CVE-2007-210110.0

FAC Guestbook 3.01 stores sensitive information under the web root with insufficient access control, which allows remote attackers...

CVE-2007-158710.0

templates/config/mail.tpl in Tim Soderstrom StatsDawg 0.92 allows remote attackers to execute arbitrary programs by specifying the...

CVE-2007-182310.0

T-Mobile voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling N...

CVE-2007-005710.0

Cisco Clean Access (CCA) 3.6.x through 3.6.4.2 and 4.0.x through 4.0.3.2 does not properly configure or allow modification of a sh...