CVE-2010-0984

Acidcat CMS <3.5.3 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-0984. PoCs published by LionTurk.

AI-analyzed exploit summary This is a technical writeup describing multiple vulnerabilities in Acidcat CMS v3.5, including exposed database files and an install script. It provides paths to sensitive files but does not include functional exploit code.

Description

Acidcat CMS 3.5.3 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing credentials via a direct request for databases/acidcat_3.mdb.

Exploits (1)

exploitdb WRITEUP VERIFIED

by LionTurk · textwebappsasp

https://www.exploit-db.com/exploits/10972

View Code ZIP pw:eip

This is a technical writeup describing multiple vulnerabilities in Acidcat CMS v3.5, including exposed database files and an install script. It provides paths to sensitive files but does not include functional exploit code.

Classification

Writeup 80%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Acidcat CMS v3.5

No auth needed

Prerequisites: Access to the target web server

MITRE ATT&CK

T1592 - Gather Victim Host Information

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/55329

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/61436

Exploit x_refsource_misc

http://packetstormsecurity.org/1001-exploits/acidcatcms-disclose.txt

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/38084

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/10972

Scores

EPSS 0.0278

EPSS Percentile 84.5%

Details

CWE

CWE-264

Status published

Products (11)

acidcat/acidcat_cms 2.1.11

acidcat/acidcat_cms 2.1.12

acidcat/acidcat_cms 2.1.13

acidcat/acidcat_cms 3.3.5

acidcat/acidcat_cms 3.4.0

acidcat/acidcat_cms 3.4.1

acidcat/acidcat_cms 3.4.2

acidcat/acidcat_cms 3.5.0

acidcat/acidcat_cms 3.5.1

acidcat/acidcat_cms 3.5.2

... and 1 more

Published Mar 16, 2010

Tracked Since Feb 18, 2026