VYPR
Unrated severityNVD Advisory· Published Jan 6, 2009· Updated Jun 16, 2026

CVE-2008-5855

CVE-2008-5855

Description

myPHPscripts Login Session 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to discover usernames, e-mail addresses, and password hashes via a direct request for users.txt.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:myphpscripts:login_session:2.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:myphpscripts:login_session:2.0:*:*:*:*:*:*:*
    • (no CPE)range: = 2.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.