Unrestricted Access to Sensitive Information in Aquarius CMS Log File

Unrestricted Access to Sensitive Information in Aquarius CMS Log File

CVE-2019-1010308 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Aquaverde GmbH Aquarius CMS prior to version 4.1.1 is affected by: Incorrect Access Control. The impact is: The access to the log file is not restricted. It contains sensitive information like passwords etc. The component is: log file. The attack vector is: open the file.

Learn more about our Cms Pen Testing.