CVE-2007-5919

N/A Unknown
Published: November 10, 2007 Modified: April 23, 2026
View on NVD

Description

MyWebFTP, possibly 5.3.2, stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain an MD5 password hash via a direct request for pass/pass.txt.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/27551
Source: cve@mitre.org
http://securityreason.com/securityalert/3355
Source: cve@mitre.org
http://www.securityfocus.com/archive/1/483354/100/0/threaded
Source: cve@mitre.org
http://www.securityfocus.com/bid/26366
Source: cve@mitre.org
http://secunia.com/advisories/27551
Source: af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/3355
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/483354/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/26366
Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
1.2%
65th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-264

Affected Vendors

mywebftp

Related CVEs

CVE-2026-9699 6.8
CVE-2026-57667 8.5
CVE-2026-57665 5.3
CVE-2026-57664 4.3
CVE-2026-57663 8.5