2003-03-18 05:00:00
mitre
PUBLISHED
eUpload 1.0 stores the password.txt password file in plaintext under the web document root, which allows remote attackers to overwrite arbitrary files by reading password.txt.