RSS   Vulnerabilities for 'Micro login system'   RSS

2007-11-01
 
CVE-2007-5787

CWE-264
 

 
Micro Login System 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing a password via a direct request for userpwd.txt.

 

 >>> Vendor: Phptoys 2 Products
Micro guestbook
Micro login system


Copyright 2024, cxsecurity.com

 

Back to Top