Vulnerabilities > Katy Whitton WEB Development

DATE CVE VULNERABILITY TITLE RISK
2007-01-05 CVE-2007-0091 Information Disclosure vulnerability in Newscmslite
newsCMSlite stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing passwords via a direct request for newsCMS.mdb.
network
low complexity
katy-whitton-web-development
7.5