Dvbbs CVE-2007-3774 Information Disclosure Vulnerability

Dvbbs CVE-2007-3774 Information Disclosure Vulnerability

Dvbbs is prone to a information disclosure vulnerability. Dvbbs 7.1.0 SP1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for Data/Dvbbs7.mdb.