2 matches found
CVE-2006-2719
JIWA Financials 6.4.14 stores usernames and passwords for all accounts in cleartext in the HRStaff table in Microsoft SQL Server, and sends the usernames and passwords in cleartext to the application's SQL Server ODBC driver, which might allow context-dependent attackers to obtain the passwords...
CVE-2006-2719
JIWA Financials 6.4.14 stores usernames and passwords for all accounts in cleartext in the HR_Staff table of Microsoft SQL Server and transmits them in cleartext to the application's SQL Server ODBC driver, enabling potential credential exposure to context-dependent attackers. The available docum...