CVE-2006-6258

2006-12-04T11:28:00
ID CVE-2006-6258
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:47:00

Description

The phpmyadmin subsystem in AlternC 0.9.5 and earlier transmits the SQL password in cleartext in a cookie, which might allow remote attackers to obtain the password by sniffing or by conducting a cross-site scripting (XSS) attack.