2006-06-12 20:00:00
mitre
PUBLISHED
Dmx Forum 2.1a stores _includes/bd.inc under the web root with insufficient access control, which allows remote attackers to obtain database username and password information.