Unrated severityNVD Advisory· Published Dec 30, 2008· Updated Jun 16, 2026
CVE-2008-5765
CVE-2008-5765
Description
WorkSimple 1.2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file containing usernames and passwords via a direct request for data/usr.txt.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.2.1
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.