CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mariovaldez: >> Simple Text-File Login Script Security Vulnerabilities

CVE-2008-5762

Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing the password via a direct request for slog_users.txt.

CVSS Score

5.0

EPSS Score

0.028

Published

2008-12-30

CVE-2008-5763

PHP remote file inclusion vulnerability in slogin_lib.inc.php in Simple Text-File Login Script (SiTeFiLo) 1.0.6 allows remote attackers to execute arbitrary PHP code via a URL in the slogin_path parameter.

CVSS Score

7.5

EPSS Score

0.056

Published

2008-12-30

Page 1

Vulnerabilities

Vulnerable Software

Mariovaldez: >> Simple Text-File Login Script Security Vulnerabilities

Products

Pricing

Contact Us