2008-05-16 10:00:00
mitre
PUBLISHED
Freelance Auction Script 1.0 stores user passwords in plaintext in the tbl_users table, which allows attackers to gain privileges by reading the table.