AI Score
Confidence
Low
EPSS
Percentile
88.8%
The default installation of MaxWebPortal 1.30 stores the portal database under the web document root with insecure access control, which allows remote attackers to obtain sensitive information via a direct request to database/db2000.mdb.
archives.neohapsis.com/archives/bugtraq/2003-06/0048.html
secunia.com/advisories/8979
www.securityfocus.com/bid/7837
exchange.xforce.ibmcloud.com/vulnerabilities/12279