Security Advisory

CVE-2014-3445

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-28 14:09:12

Last updated 2024-08-06 10:43:06

Assigner mitre

State PUBLISHED

Description

backup.php in HandsomeWeb SOS Webpages before 1.1.12 does not require knowledge of the cleartext password, which allows remote attackers to bypass authentication by leveraging knowledge of the administrator password hash.

← Browse all CVEs View on cve.org ↗