Vulnerabilities > Ememberspro

DATE CVE VULNERABILITY TITLE RISK
2007-01-09 CVE-2007-0149 Information Disclosure vulnerability in Ememberspro 1.0
EMembersPro 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing passwords via a direct request for users.mdb.
network
low complexity
ememberspro
7.5