CVE-2010-3897
IBM OmniFind Enterprise Edition 8.x/9.x has an issue where the administrator password is embedded in the HTML source of ESSearchApplication/palette.do and transmitted in plaintext over HTTP, allowing an attacker with read access to obtain credentials. The connected documents do not provide a conc...