CVE-2008-5931

Name of the Vulnerable Software and Affected Versions The Net Guys ASPired2Blog (affected versions not specified)

Description The issue allows remote attackers to download the database file containing usernames and passwords via a direct request for "admin/blog.mdb" due to insufficient access control. This enables unauthorized access to sensitive information stored under the web root.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.