Searching plaintext software vulnerabilities

Microsoft Access 97 stores a database password

plaintext | Microsoft | password | allowing | database | foreign | Access | stores | data | mdb |

Microsoft Access 97 stores a database password as plaintext in a foreign mdb, allowing access to data.


The demo version of the Quakenbush NT Password

Quakenbush | Appraiser | plaintext | passwords | Password | network | version | across | sends | demo |

The demo version of the Quakenbush NT Password Appraiser sends passwords across the network in plaintext.


Insecure directory permissions in RPM distribut

distribution | permissions | PostgreSQL | privileges | directory | plaintext | Insecure | password | reading | allows | local | users | file | gain | RPM |

Insecure directory permissions in RPM distribution for PostgreSQL allows local users to gain privileges by reading a plaintext password file.


Auto_FTP.pl script in Auto_FTP 0.2 stores usern

configuration | auto_ftpconf | Auto_FTPpl | passwords | plaintext | usernames | Auto_FTP | script | stores | file |

Auto_FTP.pl script in Auto_FTP 0.2 stores usernames and passwords in plaintext in the auto_ftp.conf configuration file.


The administrative password for the Allmanage w

administration | administrative | plaintext | attackers | Allmanage | accessed | software | password | remote | stored | could | which | site | file | web |

The administrative password for the Allmanage web site administration software is stored in plaintext in a file which could be accessed by remote attackers.


Shambala Server 4.5 stores passwords in plainte

compromise | passwords | plaintext | Shambala | obtain | stores | Server | users | local | which | could | allow |

Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server.


Internet Software Solutions Air Messenger LAN S

Solutions | Messenger | Internet | Software | Server | LAN | Air |

Internet Software Solutions Air Messenger LAN Server (AMLServer) 3.4.2 stores user passwords in plaintext in the pUser.Dat file.


CesarFTP 0.98b and earlier stores usernames and

settingsini | privileges | passwords | plaintext | attackers | usernames | CesarFTP | earlier | allows | stores | which | file | gain | 098b |

CesarFTP 0.98b and earlier stores usernames and passwords in plaintext in the settings.ini file, which allows attackers to gain privileges.


BadBlue server stores passwords in plaintext in

privileges | plaintext | attackers | passwords | possibly | BadBlue | remote | stores | extini | server | local | which | could | allow | file | gain |

BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges.


phpRank 1.8 stores the administrative password

administrative | plaintext | attackers | retrieve | password | phpRank | allows | remote | server | stores | cookie | which | "ap" |

phpRank 1.8 stores the administrative password in plaintext on the server and in the "ap" cookie, which allows remote attackers to retrieve the administrative password.


CesarFTP 0.99g stores user names and passwords

settingsini | privileges | passwords | plaintext | CesarFTP | stores | could | local | allow | which | names | users | gain | 099g | user | file |

CesarFTP 0.99g stores user names and passwords in plaintext in the settings.ini file, which could allow local users to gain privileges.


clogin.php in Benchmark Designs' WHM AutoPilot

AutoPilot | Benchmark | cloginphp | Designs' | WHM |

clogin.php in Benchmark Designs' WHM AutoPilot 2.4.5 and earlier allows remote attackers to obtain plaintext username and password credentials by using the clogin_e and base64_encode functions to encode the desired user ID in the c parameter, then read the plaintext values in the resulting form.


NessusWX 1.4.4 stores account passwords in plai

NessusWX |

NessusWX 1.4.4 stores account passwords in plaintext in .session files, which allows local users to obtain passwords.


PeerFTP_5 stores sensitive information such as

information | PeerFTPini | privileges | passwords | plaintext | sensitive | PeerFTP_5 | allows | stores | local | users | files | which | such | gain |

PeerFTP_5 stores sensitive information such as passwords in plaintext in the PeerFTP.ini files, which allows local users to gain privileges.


Einstein 1.0.1 stores sensitive information suc

Einstein |

Einstein 1.0.1 stores sensitive information such as usernames and passwords in plaintext in the registry, which allows local users to gain privileges.


Coppermine Photo Gallery 1.3.2 stores passwords

Coppermine | Gallery | Photo |

Coppermine Photo Gallery 1.3.2 stores passwords in plaintext, which allows remote attackers to obtain sensitive information.


Cybration ICUII 7.0 stores passwords in plainte

world-readable | privileges | plaintext | passwords | Cybration | icuiiini | allows | stores | users | ICUII | local | which | file | gain |

Cybration ICUII 7.0 stores passwords in plaintext in the world-readable icuii.ini file, which allows local users to gain privileges.


cosmoshop 8.10.78 and earlier stores passwords

cosmoshop |

cosmoshop 8.10.78 and earlier stores passwords in plaintext in the database, which allows local users to obtain sensitive information.


Spb Kiosk Engine 1.0.0.1 stores the administrat

Engine | Kiosk | Spb |

Spb Kiosk Engine 1.0.0.1 stores the administrator's passcode in the registry in plaintext, which allows local users to obtain the passcode.


Ultimate PHP Board (UPB) 1.9.6 and earlier uses

Ultimate | Board | PHP |

Ultimate PHP Board (UPB) 1.9.6 and earlier uses a cryptographically weak block cipher with a large key collision space, which allows remote attackers to determine a suitable decryption key given the plaintext and ciphertext by obtaining the plaintext password, which is sent when logging in, and the ciphertext, which is set in the pass_env cookie.


Software vulnerabilities results 1 to 20 of 162     
Page: 12345...9