5 matches found
EUVD-2008-4148
Malware in sbrugna...
CVE-2008-4165
admin/user/createuser.php in Kolab Groupware Server 1.0.0 places a user password in an HTTP GET request, which allows local administrators, and possibly remote attackers, to obtain cleartext passwords by reading the sslaccesslog file or the referer string...
Design/Logic Flaw
admin/user/createuser.php in Kolab Groupware Server 1.0.0 places a user password in an HTTP GET request, which allows local administrators, and possibly remote attackers, to obtain cleartext passwords by reading the sslaccesslog file or the referer string...
CVE-2008-4165
The CVE-2008-4165 entry concerns Kolab Groupware Server 1.0.0. The vulnerable component is admin/user/create_user.php, which places a user password in an HTTP GET request. This allows local administrators and possibly remote attackers to obtain cleartext passwords by inspecting the ssl_access_log...
CVE-2008-4165
admin/user/createuser.php in Kolab Groupware Server 1.0.0 places a user password in an HTTP GET request, which allows local administrators, and possibly remote attackers, to obtain cleartext passwords by reading the sslaccesslog file or the referer string...