1. Home
  2. CVE Database
  3. CVE-2007-4261
HIGH · 7.5

CVE-2007-4261

EZPhotoSales 1.9.3 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download (1) a file containing cleartext passwords via...

Vulnerability Description

EZPhotoSales 1.9.3 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download (1) a file containing cleartext passwords via a direct request for OnlineViewing/data/galleries.txt, or (2) a file containing username hashes and password hashes via a direct request for OnlineViewing/configuration/config.dat/. NOTE: vector 2 can be leveraged for administrative access because authentication does not require knowledge of cleartext values, but instead uses the username hash in the ConfigLogin parameter and the password hash in the ConfigPassword parameter.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
Ez Photo SalesEz Photo Sales1.9.3

Related Weaknesses (CWE)

CWE-255

References

FAQ

What is CVE-2007-4261?

CVE-2007-4261 is a vulnerability with a CVSS score of 7.5 (HIGH). EZPhotoSales 1.9.3 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download (1) a file containing cleartext passwords via...

How severe is CVE-2007-4261?

CVE-2007-4261 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-4261?

Check the references section above for vendor advisories and patch information. Affected products include: Ez Photo Sales Ez Photo Sales.