Freedville: >> Bloghelper Security Vulnerabilities
BlogHelper stores common_db.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request.
CVSS Score
5.0
EPSS Score
0.025
Published
2009-03-05