Vulnerabilities > Workforceroi > Xpede > 7.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-08-12 | CVE-2002-0487 | Unspecified vulnerability in Workforceroi Xpede 4.1/7.0 Intellisol Xpede 4.1 stores passwords in plaintext in a Javascript "session timeout" re-authentication capability, which could allow local users with access to gain privileges of other Xpede users by reading the password from the source file, e.g. | 4.6 |
2002-08-12 | CVE-2002-0486 | Weak Password Encryption vulnerability in Workforceroi Xpede 4.1/7.0 Intellisol Xpede 4.1 uses weak encryption to store authentication information in cookies, which could allow local users with access to the cookies to gain privileges. | 7.2 |