CVE-2003-1571

EPSS 5.23%
Veröffentlicht 02.04.2009 15:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Web Wiz Guestbook 6.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database and obtain sensitive information via a direct request for database/WWGguestbook.mdb.  NOTE: it was later reported that 8.21 is also affected.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Webwizguide ≫ Web Wiz Guestbook Version6.0

Webwizguide ≫ Web Wiz Guestbook Version8.21

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	5.23%	0.896

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/9639

Vendor Advisory

http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=25863

http://www.osvdb.org/2492

https://www.exploit-db.com/exploits/7488

https://nvd.nist.gov/vuln/detail/CVE-2003-1571

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-1571

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-1571

EUVD