Vulnerabilities > CVE-2005-2785 - Information Disclosure vulnerability in Cosmoshop 8.10.78

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
local
low complexity
cosmoshop
NVD
Published: 2005-09-02
Updated: 2017-07-11

Summary

cosmoshop 8.10.78 and earlier stores passwords in plaintext in the database, which allows local users to obtain sensitive information.

Vulnerable Configurations

Part Description Count
Application
Cosmoshop
1

References