CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-0312

wcSimple Poll stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password hashes via a direct request for password.txt.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.3%

CVSS Severity

CVSS v2 Score 7.8

References

http://osvdb.org/33539
http://securityreason.com/securityalert/2157
http://www.securityfocus.com/archive/1/456982/100/0/threaded
http://osvdb.org/33539
http://securityreason.com/securityalert/2157
http://www.securityfocus.com/archive/1/456982/100/0/threaded

Products affected by CVE-2007-0312

Wcsimple Poll » Wcsimple Poll » Version: Any

cpe:2.3:a:wcsimple_poll:wcsimple_poll:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0312

Products

Pricing

Contact Us