Planetmoon - Guestbook Clear Text Password Retrieval

Author: subj
type: webapps
platform: cgi
port: 
date_added: 2003-03-21 
date_updated: 2012-11-02 
verified: 1 
codes: CVE-2003-1541;OSVDB-49874 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/7167/info

A vulnerability has been reported in Planetmoon Guestbook. It has been reported that remote users may be able to retrieve clear text password lists. Access to this data may allow an attacker to carry out further attacks against a target user.

http://[somehost]/[gb_dir]/files/passwd.txt