CVE-2010-0939

Visialis ABB Forum 1.1 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0939. PoCs published by ViRuSMaN.

AI-analyzed exploit summary This exploit describes an information disclosure vulnerability in ABB v1.1 Forum, where the database file (abb.mdb) is accessible via a direct URL. No active exploit code is provided, only paths to sensitive files.

Description

Visialis ABB Forum 1.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for fpdb/abb.mdb.

Exploits (1)

exploitdb WRITEUP VERIFIED
by ViRuSMaN · textwebappsasp
https://www.exploit-db.com/exploits/11096

This exploit describes an information disclosure vulnerability in ABB v1.1 Forum, where the database file (abb.mdb) is accessible via a direct URL. No active exploit code is provided, only paths to sensitive files.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: ABB v1.1 Forum
No auth needed
Prerequisites: Knowledge of the target path
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/55505
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/11096

Scores

EPSS 0.0244
EPSS Percentile 82.2%

Details

CWE
CWE-264
Status published
Products (1)
visialis/abb_forum 1.1
Published Mar 08, 2010
Tracked Since Feb 18, 2026