CVE-2009-0828 — QuoteBook stores quotes.inc under the web root with insufficient access control, which allows remote attackers to obtain sensitive database information, including user credentials, via a direct reques — CVE Database · The Intelligence Room