CVE Record: CVE-2005-2785

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

alert

Notice: Keyword searching of CVE Records is now available in the search box above. Keywords may include a CVE ID (e.g., CVE-2024-1234), or one or more keywords separated by a space (e.g., authorization, SQL Injection, cross site scripting, etc.). Learn more here.

Expand or collapse notification button

Required CVE Record Information

Description

cosmoshop 8.10.78 and earlier stores passwords in plaintext in the database, which allows local users to obtain sensitive information.

Product Status

Information not provided

References 3 Total

secunia.com: 16625
external site
third-party-advisory
marc.info: 20050829 [cosmoshop <= 8.10.78] be the shopadmin in one step
external site
mailing-list
exchange.xforce.ibmcloud.com: cosmoshop-plaintext-password(22081)
external site
vdb-entry

Updated: 2024-08-07

This container includes required additional information provided by the CVE Program for this vulnerability.

References 3 Total

secunia.com: 16625
external site
third-party-advisoryx_transferred
marc.info: 20050829 [cosmoshop <= 8.10.78] be the shopadmin in one step
external site
mailing-listx_transferred
exchange.xforce.ibmcloud.com: cosmoshop-plaintext-password(22081)
external site
vdb-entryx_transferred