CVE-2009-5100

CVE-2009-5100 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Pentaho BI Server 1.7.0.1062 and earlier does not set the autocomplete tag to off on web pages using a password field, which might allow physically proximate attackers to obtain the password.

Learn more about our Web App Pen Testing.