Ocean12 Calendar Manager Gold 2.04 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to o12cal.mdb.Referenceshttp://secunia.com/advisories/32409https://exchange.xforce.ibmcloud.com/vulnerabilities/46133http://packetstorm.linuxsecurity.com/0810-exploits/ocean12-database.txthttps://exchange.xforce.ibmcloud.com/vulnerabilities/46694
