Amarok » Web Frontend : Security Vulnerabilities, CVEs, CVSS score >= 2
amaroK Web Frontend 1.3 stores the globals.inc file under the web root without a .php extension and insufficient access control, which allows remote attackers to obtain the database username and password via a direct request to the file.
Max CVSS
7.5
EPSS Score
0.27%
Published
2005-06-17
Updated
2008-09-05
1 vulnerabilities found