MitiSoft stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing passwords via a direct request for access_MS/MitiSoft.mdb.
Max CVSS
7.5
EPSS Score
1.07%
Published
2007-01-09
Updated
2018-10-16
1 vulnerabilities found