2 matches found
CVE-2009-0827
PollHelper stores poll.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request...
CVE-2009-0827
CVE-2009-0827 refers to PollHelper where poll.inc is stored under the web root with insufficient access control. This allows remote attackers to download the database file containing user credentials via a direct request. The entry notes a network-accessible issue with partial confidentiality imp...