The notifyendsubs cron job in Campsite prior to 2.3.3 sends an e-mail message containing a certain unencrypted MySQL password, which allows remote malicious users to sniff the password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
campware.org campsite 2.2.2 |