Web-ERP Configuration File Remote Access Vulnerability

info
discussion
exploit
solution
references

Web-ERP Configuration File Remote Access Vulnerability

It has been reported that Web-ERP does not sufficiently restrict access to it's configuration information. Because of this, an attacker may be able to remotely access Web-ERP information, and potentially gain access to information that is sensitive in nature.