CVE-2005-0853
CVE-2005-0853
betaparticle blog (bp blog) stores the database under the web root, which allows remote attackers to obtain sensitive information via a direct request to (1) dbBlogMX.mdb for versions before 3.0, or (2) Blog.mdb for versions 3.0 and later. NOTE: it was later reported that vector 2 also affects versions 6.0 through 9.0.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencewww.exploit-db.com/exploits/7499unverifiedexploitdbwww.exploit-db.com/exploits/25252unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://seclists.org/lists/bugtraq/2005/Mar/0360.htmlhttp://secunia.com/advisories/14668http://secunia.com/advisories/33233https://exchange.xforce.ibmcloud.com/vulnerabilities/19779https://exchange.xforce.ibmcloud.com/vulnerabilities/47419https://www.exploit-db.com/exploits/7499http://www.securityfocus.com/bid/12861