Database Exposure in ASPRunner 2.4 by XLine Soft
CVE-2004-2060

Currently unrated

Key Information:

Vendor

Xlinesoft

Status
Asprunner
Vendor
CVE Published:
31 December 2004

What is CVE-2004-2060?

ASPRunner 2.4 is prone to a file exposure vulnerability, where it improperly stores the database within the web root directory. This misconfiguration allows attackers to access the database files directly through the web, provided they can predict the filenames based on the application's table and field names. Attackers exploiting this flaw can potentially harvest sensitive data from the database, leading to serious security breaches.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.osvdb.org/8253
vdb-entryx_refsource_OSVDB
http://ferruh.mavituna.com/article/?574
x_refsource_MISC
http://secunia.com/advisories/12164
third-party-advisoryx_refsource_SECUNIA

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.