Filtered by vendor Towerblog Subscriptions
Filtered by product Towerblog Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2005-1055 1 Towerblog 1 Towerblog 2024-11-20 N/A
TowerBlog 0.6 and earlier stores the login data file under the web root, which allows remote attackers to obtain the MD5 checksums of the username and password via a direct request to the _dat/login file.