CVE-2007-5063 Information

Description

Adam Scheinberg Flip 3.0 and earlier stores sensitive information under the web root with insufficient access control which allows remote attackers to download a file containing login credentials via a direct request for var/users.txt.

Reference

http://osvdb.org/41903 https://exchange.xforce.ibmcloud.com/vulnerabilities/36710 https://www.exploit-db.com/exploits/4436