Amarok: >> Web Frontend >> 1.3 Security Vulnerabilities
amaroK Web Frontend 1.3 stores the globals.inc file under the web root without a .php extension and insufficient access control, which allows remote attackers to obtain the database username and password via a direct request to the file.
CVSS Score
7.5
EPSS Score
0.007
Published
2005-06-17