RSS   Vulnerabilities for 'Wfchat'   RSS

2003-12-31
 
CVE-2003-1540

CWE-200
 

 
WF-Chat 1.0 Beta stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain authentication information via a direct request to (1) !pwds.txt and (2) !nicks.txt.

 


Copyright 2024, cxsecurity.com

 

Back to Top