5 matches found
EUVD-2003-1384
Malware in sbrugna...
CVE-2003-1394
CoffeeCup Software Password Wizard 4.0 stores sensitive information such as usernames and passwords in a .apw file under the web document root with insufficient access control, which allows remote attackers to obtain that information via a direct request for the file...
CVE-2003-1394
The CVE-2003-1394 entry concerns CoffeeCup Software Password Wizard 4.0. Affected component/file: the .apw file stored under the web document root. Root-cause: insufficient access control on the stored credentials, enabling remote attackers to obtain usernames and passwords via a direct request t...
CVE-2003-1394
CoffeeCup Software Password Wizard 4.0 stores sensitive information such as usernames and passwords in a .apw file under the web document root with insufficient access control, which allows remote attackers to obtain that information via a direct request for the file...
CoffeeCup Software Password Wizard 4.0 - HTML Source Password Retrieval
// source: https://www.securityfocus.com/bid/7023/info A problem with the software may make it possible for remote users to gain unauthorized access to restricted resources. This vulnerability exists in Password Wizard configured to generate Java applets to password protect pages. Specifically, t...