CVE-2010-2466

Name of the Vulnerable Software and Affected Versions S2 Security NetBox versions 2.x through 3.x

Description The issue allows remote attackers to obtain sensitive information by requesting database backup files with predictable filenames, specifically full *.dar files, due to improper prevention of downloading these backups.

Recommendations For versions 2.x through 3.x, restrict access to the database backup files to prevent unauthorized downloads until a proper fix is implemented. As a temporary workaround, consider implementing additional security measures to make the filenames of the backup files less predictable.