Unrated severityNVD Advisory· Published Apr 13, 2010· Updated Jun 16, 2026
CVE-2009-4766
CVE-2009-4766
Description
YP Portal MS-Pro Surumu (aka MS-Pro Portal Scripti) 1.0 and 1.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for galeri/database/db.mdb.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:yasirpro:ms-pro_portal_scripti:1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:yasirpro:ms-pro_portal_scripti:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:yasirpro:ms-pro_portal_scripti:1.2:*:*:*:*:*:*:*
- Range: 1.0, 1.2
Patches
Vulnerability mechanics
References
3- packetstormsecurity.org/1001-exploits/ypportal-disclose.txtnvdExploit
- secunia.com/advisories/38119nvdVendor Advisory
- www.osvdb.org/61467nvd
News mentions
0No linked articles in our index yet.