CVE-2008-6770

Name of the Vulnerable Software and Affected Versions: YourPlace versions 1.0.2 and earlier

Description: The issue allows remote attackers to access a database containing user credentials via a direct request for users.txt, due to insufficient access control of sensitive information stored under the web root.

Recommendations: For versions 1.0.2 and earlier, restrict access to the users.txt file to prevent unauthorized access to user credentials. Consider relocating sensitive information outside of the web root or implementing proper access controls to mitigate the risk of exploitation.