Adam Jarret » Ajlogin : Security Vulnerabilities, CVEs, Published In 2007
AJLogin 3.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing passwords via a direct request for ajlogin.mdb.
Max CVSS
7.5
EPSS Score
1.09%
Published
2007-01-09
Updated
2018-10-16
1 vulnerabilities found