Cleartext Storage of Administration Passwords in easyNews 1.5 and Earlier

Cleartext Storage of Administration Passwords in easyNews 1.5 and Earlier

CVE-2001-1527 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

easyNews 1.5 and earlier stores administration passwords in cleartext in settings.php, which allows local users to obtain the passwords and gain access.

Learn more about our User Device Pen Test.