Описание
The administrative web interface (STEMWADM) for SurfControl SuperScout Email Filter allows users to obtain usernames and plaintext passwords via a request to the userlist.asp program, which includes the passwords in a user editing form.
Ссылки
- ExploitVendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- ExploitVendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:surfcontrol:superscout_email_filter:3.5:*:*:*:*:*:*:*
cpe:2.3:a:surfcontrol:superscout_email_filter:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:surfcontrol:superscout_email_filter:4.0:*:smtp:*:*:*:*:*
EPSS
Процентиль: 91%
0.07133
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
The administrative web interface (STEMWADM) for SurfControl SuperScout Email Filter allows users to obtain usernames and plaintext passwords via a request to the userlist.asp program, which includes the passwords in a user editing form.
EPSS
Процентиль: 91%
0.07133
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other