RSS   Vulnerabilities for 'Webmail'   RSS

2001-12-31
 
CVE-2001-1537

 

 
The default "basic" security setting' in config.php for TWIG webmail 2.7.4 and earlier stores cleartext usernames and passwords in cookies, which could allow attackers to obtain authentication information and gain privileges.

 


Copyright 2024, cxsecurity.com

 

Back to Top