CVE-2006-1209 — PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download — CVE Database · The Intelligence Room