Siteman : Security Vulnerabilities, CVEs, Published In 2007
Siteman 2.0.x2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing password hashes via a direct request for db/siteman/users.MYD.
Max CVSS
5.0
EPSS Score
0.55%
Published
2007-01-30
Updated
2018-10-16
Siteman 1.1.11 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing password hashes via a direct request for data/members.txt.
Max CVSS
5.0
EPSS Score
1.26%
Published
2007-01-30
Updated
2018-10-16
2 vulnerabilities found