CVE-2008-5765

WorkSimple 1.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing usernames and passwords via a direct request for data/usr.txt.
Configurations

Configuration 1

cpe:2.3:a:2500mhz:worksimple:1.2.1:*:*:*:*:*:*:*

Information

Published : 2008-12-30 08:30

Updated : 2017-09-29 01:32


NVD link : CVE-2008-5765

Mitre link : CVE-2008-5765

Products Affected
No products.
CWE