Vulnerabilities > CVE-2007-3357 - Remote Security vulnerability in Scriptdevelopers.Net Netclassifieds 1.0.1

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

scriptdevelopers-net

critical

NVD

Published: 2007-06-22

Updated: 2018-10-16

Summary

NetClassifieds Premium Edition does not use encryption for (1) stored passwords or (2) sensitive data, which might allow attackers to obtain information via certain vectors.

Vulnerable Configurations

Part	Description	Count
Application	Scriptdevelopers.Net Scriptdevelopers.Net Netclassifieds 1.0.1	1

References

http://osvdb.org/38563
http://securityreason.com/securityalert/2824
http://www.securityfocus.com/archive/1/471944/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/35151