Cleartext Storage of Credentials Vulnerability in PaperThin CommonSpot

Cleartext Storage of Credentials Vulnerability in PaperThin CommonSpot

CVE-2014-2870 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The default configuration of PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 uses cleartext for storage of credentials in a database, which makes it easier for context-dependent attackers to obtain sensitive information via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.