CVE-2003-1404
DotBr 0.1 stores its config.inc under the web document root with insufficient access control, enabling remote attackers to obtain sensitive data such as SQL usernames and passwords. The CVE entry (CVE-2003-1404) lists a high impact (base score 7.5, confidentiality and integrity partial) and notes...