CVE-2007-3556

Publication date

2007-07-04 15:00:00

Family

mitre

State

PUBLISHED

Description

Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an include file containing account credentials via a direct request for config.inc.