CVE-2006-0423
BEA WebLogic Portal 8.1 through SP3 stores the RDBMS Authentication provider password in cleartext in config.xml, allowing privilege escalation. Affected component: WebLogic Portal configuration for RDBMS auth. Root cause: cleartext password storage in config.xml. Impact: partial confidentiality ...