header-logo
Suggest Exploit
vendor:
GR Note
by:
Jose Luis Gongora Fernandez
7.5
CVSS
HIGH
Remote Database Disclosure
200
CWE
Product Name: GR Note
Affected Version From: v0.94 beta
Affected Version To: v0.94 beta
Patch Exists: YES
Related CWE: N/A
CPE: a:grnote:gr_note
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2009

GR Note v0.94 beta Remote Database Disclosure Vulnerability

GR Note v0.94 beta is vulnerable to remote database disclosure. An attacker can exploit this vulnerability to gain access to the database and view sensitive information.

Mitigation:

Upgrade to the latest version of GR Note.
Source

Exploit-DB raw data:

GR Note v0.94 beta Remote Database Disclosure Vulnerability
 
Author: Jose Luis Gongora Fernandez
        (a.k.a) JosS <sys-project[at]hotmail.com>
 
Web:    http://hack0wn.com/
 
/*************************/
TEST ON VERSION GR Note v0.94 beta, (in my localhost)
Download : http://sirini.net/grboard/board.php?id=grnote&articleNo=5
/*************************/
 
 !xpl: /admin/admin.backup.php
 
 __h0__

# milw0rm.com [2009-02-04]

Navigation

Suggest Exploit

Services By CQR