3.9.1

DATE	CVE	VULNERABILITY TITLE	RISK
2006-09-13	CVE-2006-4745	Local Security vulnerability in Scarybear Pocketexpense PRO 3.9.1 ScaryBear PocketExpense Pro 3.9.1 uses an internally recorded key to protect a data file whose contents are stored in plaintext, which allows local users to disable authentication and access the file by modifying a certain value in the file header. local low complexity scarybear	3.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.