CVE-2006-3398

CVE-2006-3398 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The "change password forms" in Taskjitsu before 2.0.1 includes password hashes in hidden form fields, which allows remote attackers to obtain sensitive information from the (1) Category Editor and (2) User Information editor.

Learn more about our User Device Pen Test.