Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Keyifweb Keyif Portal 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) ANKET/anket.mdb, (2) HABER/keyifweb.mdb, (3) ASP/download.mdb, or (4) SAYAC/aktif.mdb in the database/A9S7G6ASD790 directory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Keyifweb Keyif Portal web根目录安全信息泄露漏洞
Vulnerability Description
Keyifweb Keyif Portal 2.0将敏感信息储存在没有充分访问控制的 web根目录下,远程攻击者可以借助database/A9S7G6ASD790 目录中的 (1) ANKET/anket.mdb, (2) HABER/keyifweb.mdb,(3) ASP/download.mdb, 或 (4) SAYAC/aktif.mdb的直接请求,下载数据库。
CVSS Information
N/A
Vulnerability Type
N/A