CVE-2006-1718 Information

Description

Magus Perde Clever Copy 3.0 and earlier stores sensitive information under the web root with insufficient access control which allows remote attackers to view the database username and password via a direct request for connect.inc.

Reference

http://advisories.echo.or.id/adv/adv28-K-159-2006.txt http://secunia.com/advisories/19579 http://www.securityfocus.com/archive/1/430369/100/0/threaded http://www.securityfocus.com/bid/17461 http://www.vupen.com/english/advisories/2006/1316 https://exchange.xforce.ibmcloud.com/vulnerabilities/25720