Vulnerabilities > CVE-2004-1447 - Unspecified vulnerability in Jetbox ONE CMS 2.0.8

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

jetbox

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Jetbox One 2.0.8 and possibly other versions stores passwords in the database in plaintext, which could allow attackers to gain sensitive information.

Vulnerable Configurations

Part	Description	Count
Application	Jetbox Jetbox Jetbox ONE CMS 2.0.8	1

References

http://echo.or.id/adv/adv03-y3dips-2004.txt
http://secunia.com/advisories/12230
http://www.kb.cert.org/vuls/id/586720
http://www.osvdb.org/8325
http://www.securityfocus.com/archive/1/370852
http://www.securityfocus.com/bid/10858
https://exchange.xforce.ibmcloud.com/vulnerabilities/16898