Hardcoded Password Vulnerability in Pearson ProctorCache

Hardcoded Password Vulnerability in Pearson ProctorCache

CVE-2015-0972 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Pearson ProctorCache before 2015.1.17 uses the same hardcoded password across different customers' installations, which allows remote attackers to modify test metadata or cause a denial of service (test disruption) by leveraging knowledge of this password.

Learn more about our Web Application Penetration Testing UK.