CVE-2008-5956

Name of the Vulnerable Software and Affected Versions Wbstreet (aka PHPSTREET Webboard) version 1.0

Description The issue allows remote attackers to obtain database credentials due to insufficient access control of sensitive information stored under the web root. This can be achieved by making a direct request to the connect.inc file.

Recommendations For Wbstreet (aka PHPSTREET Webboard) version 1.0, consider restricting access to the connect.inc file to prevent unauthorized access to database credentials. As a temporary workaround, limit access to sensitive information stored under the web root until a more permanent solution is implemented. At the moment, there is no information about a newer version that contains a fix for this vulnerability.