Information Disclosure Vulnerability in Downloadcenter by an Unknown Vendor
CVE-2009-0732

Currently unrated

Key Information:

Vendor: Lingx
Status: Downloadcenter
Vendor: CVE Published:; 24 February 2009

Summary

The Downloadcenter 2.1 application contains a vulnerability that arises from storing the common.h file within the web root directory without adequate access controls. This oversight allows remote attackers to gain unauthorized access to sensitive user credentials and other classified information through direct requests. Effective security measures should be implemented to restrict access to sensitive files and prevent potential exploitation.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/48862

vdb-entryx_refsource_XF

http://secunia.com/advisories/33992

third-party-advisoryx_refsource_SECUNIA

http://osvdb.org/52180

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Feb 24, 2009
Vulnerability Reserved
Feb 24, 2009