3 matches found
CVE-2018-11639
Plaintext Storage of Passwords within Cookies in /var/www/xms/application/controllers/verifyLogin.php in the administrative console in Dialogic PowerMedia XMS before 3.5 SU2 allows remote attackers to access a user's password in cleartext...
CVE-2018-11639
Plaintext Storage of Passwords within Cookies in /var/www/xms/application/controllers/verifyLogin.php in the administrative console in Dialogic PowerMedia XMS before 3.5 SU2 allows remote attackers to access a user's password in cleartext...
CVE-2018-11639
Dialogic PowerMedia XMS prior to version 3.5 SU2 suffers a vulnerability where passwords are stored in plaintext inside cookies handled by /var/www/xms/application/controllers/verifyLogin.php. This plaintext storage enables remote attackers to access user passwords in cleartext. The CVE entry cit...