WebAccess in Zarafa prior to 7.1.10 and WebApp prior to 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fedoraproject fedora 19 |
||
zarafa zarafa 7.0.10 |
||
zarafa zarafa 7.0.12 |
||
zarafa zarafa 7.0.7 |
||
zarafa zarafa 7.0.9 |
||
zarafa webapp |
||
zarafa zarafa |
||
zarafa zarafa 7.0 |
||
zarafa zarafa 7.0.1 |
||
zarafa zarafa 7.1.1 |
||
zarafa zarafa 7.0.2 |
||
zarafa zarafa 7.0.3 |
||
zarafa zarafa 7.0.4 |
||
zarafa zarafa 7.0.5 |
||
zarafa zarafa 7.1.2 |
||
zarafa zarafa 7.1.3 |
||
zarafa zarafa 7.1.4 |
||
fedoraproject fedora 20 |
||
zarafa zarafa 7.0.11 |
||
zarafa zarafa 7.0.13 |
||
zarafa zarafa 7.0.6 |
||
zarafa zarafa 7.0.8 |
||
zarafa zarafa 7.1.0 |
||
zarafa zarafa 7.1.8 |