CVE-2007-5431

MyFTPUploader Module in Stride 1.0 - Exposure of Sensitive FTP Credentials in imageupload.js

Title source: llm
STIX 2.1

Description

include/imageupload.js in the MyFTPUploader module in Stride 1.0 contains sensitive information including FTP login credentials, which might allow remote attackers to gain unauthorized access to the FTP server being used by the module by viewing the source code.

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/482006/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3216
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/45487
Exploit x_refsource_misc
http://securityvulns.ru/Sdocument4.html

Scores

EPSS 0.0155
EPSS Percentile 72.2%

Details

CWE
CWE-200
Status published
Products (2)
javaatwork/myftpuploader_module
scottmanktelow/stride 1.0
Published Oct 12, 2007
Tracked Since Feb 18, 2026