Vulnerabilities > Tightauction
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-12-31 | CVE-2002-1886 | Information Disclosure vulnerability in Tightauction 3.0 TightAuction 3.0 stores config.inc under the web document root with insufficient access control, which allows remote attackers to obtain the database username and password. | 5.0 |