CVE-2013-0651

Name of the Vulnerable Software and Affected Versions GE Intelligent Platforms Proficy Real-Time Information Portal (affected versions not specified)

Description The issue concerns the Portal installation process, which stores sensitive information under the web root with insufficient access control. This allows remote attackers to read configuration files and discover data-source credentials via a direct request.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.