2006-12-04 11:00:00
mitre
PUBLISHED
Cahier de texte 2.0 stores sensitive information under the web root, possibly with insufficient access control, which might allow remote attackers to obtain all users passwords via a direct request for administration/dump.sql.