CVE-2008-7207 Information

Description

RivetTracker before 1.0 stores passwords in cleartext in config.php which allows local users to discover passwords by reading config.php.

Reference

http://osvdb.org/42433 http://www.rivetcode.com/files/rivettracker/rivettracker_1-0.zip