6.2 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
81.0%
login.php in php-Board 1.0 stores plaintext passwords in $username.txt with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information via a direct request.
archives.neohapsis.com/archives/vulnwatch/2003-q1/0069.html
www.securityfocus.com/bid/6862
exchange.xforce.ibmcloud.com/vulnerabilities/11338