Unrated severityNVD Advisory· Published Jan 6, 2009· Updated Jun 16, 2026
CVE-2008-5855
CVE-2008-5855
Description
myPHPscripts Login Session 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to discover usernames, e-mail addresses, and password hashes via a direct request for users.txt.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:myphpscripts:login_session:2.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:myphpscripts:login_session:2.0:*:*:*:*:*:*:*
- (no CPE)range: = 2.0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.