Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:32:13 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1156429638&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F1003-advisories%2Fsecunia-etsb.txt%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1156429638.1338179533.1338179533.1338179533.1%3B%2B__utmz%3D32867617.1338179533.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/87083/secunia-etsb.txt http://packetstormsecurity.org/files/87083/secunia-etsb.txt http://packetstormsecurity.org/files/87083/Employee-Timeclock-Software-Backup-Information-Disclosure.html Wed, 10 Mar 2010 15:44:55 GMT Secunia Research has discovered security issue in Employee Timeclock Software, which can be exploited by malicious people to disclose sensitive information. The database backup functionality stores the database backup with a semi-predictable file name inside the web root. This can be exploited to download the backup by guessing the file name. Version 0.99 is affected.