Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Scriptsez Subscribe
Filtered by product Smart Php Subscriber
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-0518 1 Scriptsez 1 Smart Php Subscriber 2024-02-28 7.5 HIGH N/A
Scriptsez Smart PHP Subscriber (aka subscribe) stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain encoded passwords via a direct request for pwd.txt.