CVE-2007-5431
MyFTPUploader Module in Stride 1.0 - Exposure of Sensitive FTP Credentials in imageupload.js
Title source: llmDescription
include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information including FTP login credentials, which might allow remote attackers to gain unauthorized access to the FTP server being used by the module by viewing the source code.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/482006/100/0/threaded
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/3216
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/45487
Exploit x_refsource_misc
http://securityvulns.ru/Sdocument4.html
Scores
EPSS
0.0155
EPSS Percentile
72.2%
Details
CWE
CWE-200
Status
published
Products (2)
javaatwork/myftpuploader_module
scottmanktelow/stride
1.0
Published
Oct 12, 2007
Tracked Since
Feb 18, 2026