BugTraq
Invision Power Board Plaintext Password Disclosure Vuln Apr 25 2003 08:17PM
JeiAr (jeiar kmfms com)


Invision Power Board Plaintext Password Disclosure Vuln

-------------------------------------------------------

Version: All?

Problem: Invision Power Board gives an admin the option

to create a pass protected forum. The problem with this

is that the password is then stored in the cookie fully

readable as it is shown in plaintext.

Credits: All credit goes to JeiAr of GulfTech Computers

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus