CVE-2005-0229
CVE-2005-0229 affects CitrusDB up to version 0.3.5, where a temporary file newfile.txt is stored under the web root and can be accessed via HTTP (e.g., /io/newfile.txt), enabling remote attackers to exfiltrate credit card data. The vulnerability arises from storing sensitive data in a web-accessi...