CVE-2008-7207

EUVD-2008-7166
RivetTracker before 1.0 stores passwords in cleartext in config.php, which allows local users to discover passwords by reading config.php.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
rivetcoderivettracker
𝑥
≤ 0.8
rivetcoderivettracker
0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/42433
http://www.rivetcode.com/files/rivettracker/rivettracker_1-0.zip
http://osvdb.org/42433
http://www.rivetcode.com/files/rivettracker/rivettracker_1-0.zip