Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
silverstripeCMS Credentials Management Errors Vulnerability - CVE-2010-5092 - Vulnerability Database
silverstripeCMS

silverstripeCMS Credentials Management Errors Vulnerability - CVE-2010-5092

Low
Reference: CVE-2010-5092
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-5092
Title: silverstripeCMS Credentials Management Errors Vulnerability
Overview:

The Add Member dialog in the Security admin page in SilverStripe 2.4.0 saves user passwords in plaintext which allows local users to obtain sensitive information by reading a database.