CVE-2008-7207

RivetTracker before 1.0 stores passwords in cleartext in config.php, which allows local users to discover passwords by reading config.php.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
VendorProductVersion
rivetcoderivettracker
𝑥
≤ 0.8
rivetcoderivettracker
0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/42433
http://www.rivetcode.com/files/rivettracker/rivettracker_1-0.zip
http://osvdb.org/42433
http://www.rivetcode.com/files/rivettracker/rivettracker_1-0.zip