CVE-2008-6374

Name of the Vulnerable Software and Affected Versions: CodefixerSoftware MailingListPro Free Edition (affected versions not specified)

Description: The issue allows remote attackers to obtain sensitive information due to insufficient access control. Sensitive information is stored under the web root, making it accessible via a direct request to "db/MailingList.mdb".

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.