CVE-2005-4775

2022-10-0316:22:45

mitre

www.cve.org

contineo 2.0

admin account

vulnerability

password hash

remote attackers

6.8 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

61.5%

JSON

Michael Scholz and Sebastian Stein Contineo 2.0, when the admin account lacks an e-mail address attribute, displays the password hash in a warning upon page reload, which might allow remote attackers to view the hash.

References

sourceforge.net/tracker/index.php?func=detail&aid=1350700&group_id=88385&atid=586478

www.osvdb.org/20704