Magento Config File Disclosure
Description
Magento stores its configuration in a file local.xml. Due to a misconfiguration of a web server, an attacker can access the cofiguration file.
Remediation
Restrict access to local.xml
Looking for the vulnerability index of Invicti's legacy products?