cve/CVE-2007-0149.md at 71b0cee710ed54e668d68c977dc8a01eece35241

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 10:41:43 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

EMembersPro 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing passwords via a direct request for users.mdb.

POC

Reference

http://securityreason.com/securityalert/2118

Github

No PoCs found on GitHub currently.

672 B Raw Blame History

CVE-2007-0149

Description

POC

Reference

Github

672 B

Raw Blame History