CVE-2008-5765

2008-12-30T15:30:01
ID CVE-2008-5765
Type cve
Reporter NVD
Modified 2017-09-28T21:32:47

Description

WorkSimple 1.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing usernames and passwords via a direct request for data/usr.txt.