CVE-2006-3483
PHPMailList 1.8.0 is affected. The issue is insufficient access control that allows remote attackers to directly access sensitive files (list.dat, ml_config.dat) under the web root, exposing subscriber email addresses, configuration information, and admin credentials. This is tied to the CVE-2006...