3 matches found
CVE-2008-5762
Simple Text-File Login Script SiTeFiLo 1.0.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for slogusers.txt...
CVE-2008-5762
Simple Text-File Login Script SiTeFiLo 1.0.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for slogusers.txt...
CVE-2008-5762
The CVE-2008-5762 entry concerns Simple Text-File Login Script (SiTeFiLo) version 1.0.6. The vulnerability arises from storing sensitive information under the web root with insufficient access control, enabling a remote attacker to download the password database file via a direct request for slog...