CVE-2006-0920 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-0920

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Oi! Email Marketing System 3.0 (aka Oi! 3) stores the servers FTP password in cleartext on a Configuration web page, which allows local users with superadministrator privileges, or attackers who have obtained access to the web page, to view the password.

Affected Software

Name	Vendor	Start Version	End Version
Email_marketing_system	Oi	3.0 (including)	3.0 (including)

References

http://securityreason.com/securityalert/483
http://www.h4cky0u.org/advisories/HYSA-2006-003-oi-email.txt
http://www.securityfocus.com/archive/1/425924/100/0/threaded
http://www.securityfocus.com/bid/16794
http://securityreason.com/securityalert/483
http://www.h4cky0u.org/advisories/HYSA-2006-003-oi-email.txt
http://www.securityfocus.com/archive/1/425924/100/0/threaded
http://www.securityfocus.com/bid/16794