CVE-2008-6051 Information

Description

MetaCart Free stores metacart.mdb under the web root with insufficient access control which allows remote attackers to obtain usernames and passwords via a direct request.

Reference

http://www.securityfocus.com/archive/1/499123/100/0/threaded