CVE-2010-1065

Name of the Vulnerable Software and Affected Versions Lebisoft Ziyaretci Defteri versions 7.4 through 7.5

Description The issue allows remote attackers to download a database due to insufficient access control. Sensitive information is stored under the web root, enabling attackers to access it via a direct request for db/lebisoft.mdb.

Recommendations For versions 7.4 and 7.5, restrict access to the db/lebisoft.mdb file to prevent unauthorized downloads. At the moment, there is no information about a newer version that contains a fix for this vulnerability.