Leif M. Wright's Blog 3.5 stores the config file and other txt files under the web root with insufficient access control, which allows remote malicious users to read the administrator's password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
leif m. wright web blog 3.5 |