EJ3 TOPo 2.2.178 includes the password in cleartext in the ID field to index.php, which allows context-dependent malicious users to obtain entry passwords via log files, referrers, or other vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ej3 topo 2.2.178 |