VYPR
Unrated severityNVD Advisory· Published Nov 10, 2007· Updated Jun 16, 2026

CVE-2007-5919

CVE-2007-5919

Description

MyWebFTP, possibly 5.3.2, stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain an MD5 password hash via a direct request for pass/pass.txt.

Affected products

2
  • Mywebftp/Mywebftp2 versions
    cpe:2.3:a:mywebftp:mywebftp:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mywebftp:mywebftp:*:*:*:*:*:*:*:*
    • (no CPE)range: 5.3.2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.