6.7 Medium
AI Score
Confidence
Low
0.024 Low
EPSS
Percentile
90.0%
CMtextS 1.0 and earlier stores users_logins/admin.txt under the web document root with insufficient access control, which allows remote attackers to obtain the administrator password.
secunia.com/advisories/21988
www.vupen.com/english/advisories/2006/3690
exchange.xforce.ibmcloud.com/vulnerabilities/28999
www.exploit-db.com/exploits/2388