Description
The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.html.
Exploits (1)
References (3)
Core 3
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/5866
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/10298.php
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/293871
Scores
EPSS
0.0538
EPSS Percentile
90.1%
Details
Status
published
Products (1)
mysimplenews/mysimplenews
1.0
Published
Dec 31, 2002
Tracked Since
Feb 18, 2026