CVE-2009-0249
The CVE-2009-0249 entry concerns Katy Whitton RankEm, where sensitive information is stored under the web root with insufficient access control. A remote attacker can directly request database/topsites.mdb and obtain a credentials-containing database. The underlying issue is improper access contr...