CVE-2002-2190

2005-11-1621:17:00

mitre

www.cve.org

artscore studios

cutecast forum

plaintext password

storage

vulnerability

remote attackers

http request

AI Score

6.5

Confidence

Low

EPSS

0.042

Percentile

92.4%

JSON

ArtsCore Studios CuteCast Forum 1.2 stores passwords in plaintext under the web document root, which allows remote attackers to obtain the passwords via an HTTP request to a .user file.

References

archives.neohapsis.com/archives/bugtraq/2002-11/0058.html

www.iss.net/security_center/static/10556.php

www.securityfocus.com/bid/6127