Vulnerabilities > CVE-2002-0933 - Authentication Credentials vulnerability in Datalex Bookit! Consumer Plaintext
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Datalex PLC BookIt! Consumer before 2.2 stores usernames and passwords in plaintext in a cookie, which could allow remote attackers to gain privileges via Cross-site scripting or sniffing attacks.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |