CVE-2007-5787

Name of the Vulnerable Software and Affected Versions Micro Login System version 1.0

Description The issue concerns the storage of sensitive information under the web root with insufficient access control. This allows remote attackers to download a file containing a password via a direct request for the userpwd.txt file.

Recommendations For Micro Login System version 1.0, consider restricting access to sensitive files, such as userpwd.txt, to prevent unauthorized downloads. As a temporary workaround, restrict access to the web root directory to minimize the risk of exploitation.