An issue in SCHUHFRIED v.8.22.00 allows remote malicious user to obtain the database password via crafted curl command.
schuhfried schuhfried