CVE-2009-0336
BlogIt! is affected. The vulnerability stems from storing the database file (Blog.mdb) under the web root with insufficient access controls, enabling remote attackers to download the credentials database via a direct request. This is a server-side exposure of sensitive user data. The description ...