WEB Calendar(calendar35.mdb) Remote Database Disclosure Vulnerability

vendor:

WEB Calendar

by:

RENO

8.8

CVSS

HIGH

Remote Database Disclosure

200

CWE

Product Name: WEB Calendar

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

WEB Calendar(calendar35.mdb) Remote Database Disclosure Vulnerability

A vulnerability exists in the WEB Calendar application, where an attacker can remotely access the calendar35.mdb database, which contains sensitive information.

Mitigation:

Ensure that the calendar35.mdb database is not accessible from the internet, and that access to the database is restricted to only authorized personnel.

Source

Exploit-DB raw data:

---------------------------------------
WEB Calendar(calendar35.mdb) Remote Database Disclosure Vulnerability
---------------------------------------

 #####################################################
 # [+] Author        :  RENO                         #
 # [+] Email         :  R7e@HoTMaiL.coM              #
 # [+] Site :  www.vxx9.cc                           #
 # [+] Team :  SauDi ViRuS TeaM                      #
 # [+] Dork : search for it :p                       #
 # [+] Script : WEB Calendar                         #
 #####################################################

vuln. in :

http://server/path/Calendar_36/database/calendar35.mdb


good luck :D

Thanks to : Allah ..


Greets : ! BaD BoY ! , Dr.php , Jetli007 , Gov.Hacker , AnTi SeCuRe , Dr.$audi , All Vxx9.Cc Members