This is a technical writeup describing a database disclosure vulnerability in BlogWorx Blog, an ASP-based application. The vulnerability allows unauthorized access to sensitive database files (users.mdb or teadmin.mdb) via direct URL access.
Classification
Writeup 80%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:BlogWorx Blog (version not specified)
No auth needed
Prerequisites:Direct access to the target server's database files via URL