CVE-2012-4976

Layton Helpbox 4.4.0 - Info Disclosure

Title source: llm
STIX 2.1

Description

selectawasset.asp in Layton Helpbox 4.4.0 allows remote attackers to discover ODBC database credentials via an element=sys_asset_id request, which is not properly handled during construction of an error page.

References (1)

Core 1
Core References

Scores

EPSS 0.0119
EPSS Percentile 64.1%

Details

CWE
CWE-200
Status published
Products (1)
layton_technology/helpbox 4.4.0
Published Dec 12, 2012
Tracked Since Feb 18, 2026