CVE-2006-7114
In CVE-2006-7114, P-News 2.0 stores db/user.txt under the web document root, exposing user credentials due to insufficient access control. This allows remote attackers to directly request the file and obtain usernames and password hashes. The issue is corroborated by the NVD entry; no additional ...