CVE-2005-1094 - Sacramental Sluts

Description

FTP Now 2.6.14 stores usernames and passwords in plaintext in sites.xml which is world-readable which allows local users to gain privileges.

Reference

http://securitytracker.com/id?1013657 http://secunia.com/advisories/14889 http://www.osvdb.org/15296 https://exchange.xforce.ibmcloud.com/vulnerabilities/20025