CVE-2006-6890
Voodoo chat 1.0RC1b stores passwords under the web root with insufficient access control, enabling remote retrieval of passwords via a direct request to data/users.dat. Affected component: the chat application’s data storage file (data/users.dat) exposed at web root. Root cause: inadequate access...