CVE-2007-5063
Adam Scheinberg Flip < 3.0 - Credentials Management
Title source: ruleDescription
Adam Scheinberg Flip 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing login credentials via a direct request for var/users.txt.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by undefined1_ · perlwebappsphp
https://www.exploit-db.com/exploits/4436
Scores
EPSS
0.0304
EPSS Percentile
86.7%
Details
CWE
CWE-255
Status
published
Products (1)
adam_scheinberg/flip
< 3.0
Published
Sep 24, 2007
Tracked Since
Feb 18, 2026