CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-5762

Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for slog_users.txt.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://osvdb.org/50712
http://secunia.com/advisories/33110
http://securityreason.com/securityalert/4847
https://www.exploit-db.com/exploits/7444
http://osvdb.org/50712
http://secunia.com/advisories/33110
http://securityreason.com/securityalert/4847
https://www.exploit-db.com/exploits/7444

Products affected by CVE-2008-5762

Mariovaldez » Simple Text-File Login Script » Version: 1.0.6

cpe:2.3:a:mariovaldez:simple_text-file_login_script:1.0.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-5762

Products

Pricing

Contact Us