CVE-2007-5919 in MyWebFTPinfo

Summary

MyWebFTP, possibly 5.3.2, stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain an MD5 password hash via a direct request for pass/pass.txt.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

11/09/2007

Disclosure

11/09/2007

Moderation

VulDB entry created

Entries

VDB-39635 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

5.3

EPSS

0.00294

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-5919
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-5919
CVE Details	https://www.cvedetails.com/cve/CVE-2007-5919/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!