BugTraq
Back to list
|
Post reply
Invision Power Board Plaintext Password Disclosure Vuln
Apr 25 2003 08:17PM
JeiAr (jeiar kmfms com)
Invision Power Board Plaintext Password Disclosure Vuln
-------------------------------------------------------
Version: All?
Problem: Invision Power Board gives an admin the option
to create a pass protected forum. The problem with this
is that the password is then stored in the cookie fully
readable as it is shown in plaintext.
Credits: All credit goes to JeiAr of GulfTech Computers
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Invision Power Board Plaintext Password Disclosure Vuln
-------------------------------------------------------
Version: All?
Problem: Invision Power Board gives an admin the option
to create a pass protected forum. The problem with this
is that the password is then stored in the cookie fully
readable as it is shown in plaintext.
Credits: All credit goes to JeiAr of GulfTech Computers
[ reply ]