VYPR
← All advisories
Unrated severityNVD Advisory· Published Jan 29, 2007· Updated Jun 16, 2026

CVE-2007-0546

CVE-2007-0546

Description

Toxiclab Shoutbox 1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing passwords via a direct request for db.mdb.

Affected products

2
  • Toxiclab/Shoutbox2 versions
    cpe:2.3:a:toxiclab:shoutbox:1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:toxiclab:shoutbox:1:*:*:*:*:*:*:*
    • (no CPE)range: = 1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.