Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-2060
CVE-2004-2060
Description
ASPRunner 2.4 stores the database under the web root in the db directory, which may allow remote attackers to obtain the database via a direct request to the database filename, which is predictable based on table and field names.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:xlinesoft:asprunner:1.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:xlinesoft:asprunner:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:xlinesoft:asprunner:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:xlinesoft:asprunner:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:xlinesoft:asprunner:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:xlinesoft:asprunner:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:xlinesoft:asprunner:2.4:*:*:*:*:*:*:*
- (no CPE)range: =2.4
Patches
Vulnerability mechanics
References
8News mentions
0No linked articles in our index yet.