CVE-2018-11639

Publication date

2018-07-03 17:00:00

Family

mitre

State

PUBLISHED

Description

Plaintext Storage of Passwords within Cookies in /var/www/xms/application/controllers/verifyLogin.php in the administrative console in Dialogic PowerMedia XMS before 3.5 SU2 allows remote attackers to access a users password in cleartext.