Vulnerabilities (CVE)

Filtered by vendor Planetmoon Subscribe
Filtered by product Guestbook
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-1541 1 Planetmoon 1 Guestbook 2024-02-28 5.0 MEDIUM N/A
PlanetMoon Guestbook tr3.a stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the admin script password, and other passwords, via a direct request to files/passwd.txt.