AI Score
Confidence
Low
EPSS
Percentile
82.4%
Snitz Forums 2000 3.4.06 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for forum/snitz_forums_2000.mdb.
hackerscenter.com/archive/view.asp?id=28145
www.packetstormsecurity.org/0801-exploits/snitz-multi.txt
www.securityfocus.com/archive/1/485836/100/200/threaded
www.securityfocus.com/archive/1/485894/100/200/threaded