Cleartext Password Exposure in Domain Technologie Control (DTC)

Cleartext Password Exposure in Domain Technologie Control (DTC)

CVE-2011-0436 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The register_user function in client/new_account_form.php in Domain Technologie Control (DTC) before 0.32.9 includes a cleartext password in an e-mail message, which makes it easier for remote attackers to obtain sensitive information by sniffing the network.

Learn more about our Network Penetration Testing.