Family: CGI abuses --> Category: infos
Web Wiz Forums database disclosure Vulnerability Scan
Vulnerability Scan Summary
Checks for wwforum.mdb
Detailed Explanation for this Vulnerability Test
The remote web server contains an ASP application that is affected by
an information disclosure vulnerability.
The remote server is running Web Wiz Site Forum, a set of ASP scripts
to manage online forums.
This release comes with a 'wwforum.mdb' database, usually located
under 'admin' which contains sensitive information, such as the user
passwords and emails. A possible hacker may use this flaw to gain
unauthorized access to the affected application.
See also :
Prevent the download of .mdb files from your website.
Low / CVSS Base Score : 2
Click HERE for more information and discussions on this network vulnerability scan.