5
CVE-2006-0439
- EPSS 1.67%
- Veröffentlicht 26.01.2006 22:03:00
- Zuletzt bearbeitet 16.06.2026 22:20:36
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginText Rider 2.4 stores sensitive data in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain usernames and password hashes by directly accessing data/userlist.txt.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Text Rider ≫ Text Rider Version2.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.67% | 0.737 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://evuln.com/vulns/46/summary.html
http://secunia.com/advisories/18605
http://securitytracker.com/id?1015533
http://www.securityfocus.com/archive/1/423130/100/0/threaded
http://www.vupen.com/english/advisories/2006/0321
https://exchange.xforce.ibmcloud.com/vulnerabilities/24279