CVE-2007-0089
CVE-2007-0089 concerns jgbbs leaving a sensitive database under the web root with insufficient access control. Remote attackers can retrieve the database file (db/bbs.mdb), exposing passwords via a direct request. The vulnerability stems from inadequate separation between web-accessible content a...