ESSearchApplication/palette.do in IBM OmniFind Enterprise Edition 8.x and 9.x includes the administrator password in the HTML source code, which might allow remote malicious users to obtain sensitive information by leveraging read access to this file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm omnifind 9.0 |
||
ibm omnifind 9.1 |
||
ibm omnifind 8.4 |
||
ibm omnifind 8.5 |
||
ibm omnifind 8.0 |