Insecure Password Storage in ArtsCore Studios CuteCast Forum 1.2

Insecure Password Storage in ArtsCore Studios CuteCast Forum 1.2

CVE-2002-2190 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

ArtsCore Studios CuteCast Forum 1.2 stores passwords in plaintext under the web document root, which allows remote attackers to obtain the passwords via an HTTP request to a .user file.

Learn more about our Cis Benchmark Audit For Apple Ios.