Описание
Web Based Quiz System v1.0 transmits user passwords in plaintext during the authentication process, allowing attackers to obtain users' passwords via a bruteforce attack.
Ссылки
- ExploitMitigationThird Party Advisory
- ExploitMitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:web_based_quiz_system_project:web_based_quiz_system:1.0:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00138
Низкий
7.5 High
CVSS3
Дефекты
CWE-319
CWE-319
Связанные уязвимости
CVSS3: 7.5
github
около 3 лет назад
Web Based Quiz System v1.0 transmits user passwords in plaintext during the authentication process, allowing attackers to obtain users' passwords via a bruteforce attack.
EPSS
Процентиль: 34%
0.00138
Низкий
7.5 High
CVSS3
Дефекты
CWE-319
CWE-319