CVE-2009-0250
22.01.2009, 16:30
Ryneezy phoSheezy 0.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the file containing the administrator's password hash via a direct request for config/password.Enginsight
Vendor | Product | Version |
---|---|---|
ryneezy | phosheezy | 0.2 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References