Planetmoon - Guestbook Clear Text Password Retrieval

Author: subj
type: webapps
platform: cgi
port: 
date_added: 2003-03-21  
date_updated: 2012-11-02  
verified: 1  
codes: CVE-2003-1541;OSVDB-49874  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 22408.txt  

source: https://www.securityfocus.com/bid/7167/info

A vulnerability has been reported in Planetmoon Guestbook. It has been reported that remote users may be able to retrieve clear text password lists. Access to this data may allow an attacker to carry out further attacks against a target user.

http://[somehost]/[gb_dir]/files/passwd.txt