Datalex Bookit! Consumer Plaintext Authentication Credentials Vulnerability

info
discussion
exploit
solution
references

Datalex Bookit! Consumer Plaintext Authentication Credentials Vulnerability

Datalex Bookit! Consumer cookies contain plaintext authentication credentials. Additionally, due to use of the CGI GET method, plaintext authentication credentials are sent in CGI parameters. This becomes an issue if the authentication credentials ever become exposed to an attacker.