VYPR

Facto

by Factosystem

CVEs (1)

  • CVE-2008-5935Jan 21, 2009
    risk 0.00cvss epss 0.01

    Facto stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for database/facto.mdb. NOTE: some of these details are obtained from third party…