Secunia Research has discovered security issue in Employee Timeclock Software, which can be exploited by malicious people to disclose sensitive information. The database backup functionality stores the database backup with a semi-predictable file name inside the web root. This can be exploited to download the backup by guessing the file name. Version 0.99 is affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/87083/secunia-etsb.txt
Source: https://packetstormsecurity.com/files/87083/Employee-Timeclock-Software-Backup-Information-Disclosure.html