Full title: ABB Cylon Aspect 3.08.01 vstatConfigurationDownload.php Configuration Download Vulnerability Category: web applications Platform: php ABB Cylon Aspect version 3.08.01 suffers from an unauthenticated configuration download vulnerability. This can be exploited to download the CSV DB that contains the configuration mappings information via the VMobileImportExportServlet by directly calling the vstatConfigurationDownload.php script. # 0day.today @ http://0day.today/