Issues In CGINews and CGIForum

Vendor : Markus Triska URL : http://triskam.virtualave.net/cginews.html Version : 1.07 And Possible Earlier & CGIForum 1.09 Risk : Weak Encryption & Info Disclosure Description: CGINews is a multi-user Web site news posting system written in Perl. Main features include: adding, updating, and...

WorkforceROI Xpede 4.17.0 - Weak Password Encryption

WorkforceROI Xpede 4.17.0 - Weak Password Encryption source: https://www.securityfocus.com/bid/4344/info An issue has been reported in Xpede, which could lead to a compromise of user authentication information. Reportedly, Xpede cookies containing username and password data is stored using a weak...