CVE-2005-1055
CVE-2005-1055 (TowerBlog): TowerBlog 0.6 and earlier stores the login data file under the web root, enabling remote access to the file via a direct request to the _dat/login path. This exposes MD5 checksums of usernames and passwords, constituting a partial confidentiality impact. The connected r...