CVE-2009-0826
CVE-2009-0826: BlogHelper stores common_db.inc under the web root with insufficient access control, enabling remote attackers to download the database file containing user credentials via a direct request. The description and linked references confirm exposure of credential data through direct ac...