MidnightBSD

Advisories for dayfox_designs

CVE-2006-2522 HIGH

Dayfox Blog 2.0 and earlier stores user credentials in edit/slog_users.txt under the web document root with insufficient access control, which allows remote attackers to gain privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
dayfox_designs dayfox_blog *