Vulnerability Development mailing list archives
Forms Manager default configuration problem
From: anonymous () APPS2 MBOX NET
Date: Fri, 27 Oct 2000 15:49:31 -0000
Forms Manager is a bit old but its still used by a lot of business' on the web to process their form data. If care is not taken in configuration and installation the results of the form submittals are word readable by using any search engine. The problem leaves open in most cases personal data such as name, address, phone, fax and email address to be read. But more private data could be stored. The data is stored in a file called "storage.txt" and a search on most search engines will bring up a list of vulnerable sites. This can be remedied by setting up the right RWX permissions on the file. I hope this posting isn't out of place here.
Current thread:
- Forms Manager default configuration problem anonymous (Oct 28)