DUware DUpoll 3.0 and 3.1 stores _private/Dupoll.mdb under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as usernames and passwords.
Max CVSS
5.0
EPSS Score
0.91%
Published
2006-08-31
Updated
2018-10-17
1 vulnerabilities found