EUVD-2007-5889

Malware in sbrugna...

MyWebFTP SQL injection Vulnerability

Exploit for php platform in category web applications ==================================== MyWebFTP SQL injection Vulnerability ==================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1...

Improper access control

MyWebFTP, possibly 5.3.2, stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain an MD5 password hash via a direct request for pass/pass.txt...

CVE-2007-5919

MyWebFTP, possibly 5.3.2, stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain an MD5 password hash via a direct request for pass/pass.txt...

CVE-2007-5919

MyWebFTP, possibly 5.3.2, stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain an MD5 password hash via a direct request for pass/pass.txt...

CVE-2007-5919

The CVE-2007-5919 entry concerns MyWebFTP (likely version 5.3.2) where sensitive data is stored under the web root with weak access controls, enabling remote retrieval of an MD5 password hash by directly requesting pass/pass.txt. This vulnerability is described across multiple sources (NVD, CVE l...

MyWebFTP Password Disclosure

Aria-Security Team http://Aria-Security.Net shout out to: AurA, imm02tal and Aria's Staff http://site.com/path/mwftp/pass/pass.txt As you see the mentioned file contains the md5 which you can crack and use in http://site.com/path/ftp.php to login. Regards, The-0utl4w...