Tenrok: Users Data / Password disclosure (v1.1.0)
Description
The vulnerability is caused due to the userpwd.txt file being created in the webroot directory, which could allow attackers to gain knowledge of login credentials.
Default
configuration
Profiles
High
Medium
Low
Internet
Action
Block
Pass
Pass
Pass
Alarm Level
Minor
Minor
Ignore
Minor
References
Available since
ASQ v3.5.0
Protects
Tenrok Command Injection and Information Disclosure Vulnerabilities
100 last CVE
Risk level
High
