IQID:23155 HTTP Solar-Log 500 2.8.2 Password Disclosure 'sms.html' S

IQID: 23155 - June 2021

Solar-Log 500 version 2.8.2 suffers from password disclosure vulnerabilities. Solar-Log could allow a remote authenticated attacker to obtain sensitive information, caused by the storage of user credentials in plain-text in the log files. By gaining access to the /export.html, /email.html, /sms.html pages, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.

A Full Description is available for this threat, please sign in for access to Full Description.

 

Attack Data

Attack Data is available for this threat, please sign in for access to Attack Data.

 

CVSS Information

CVSS Information is available for this threat, please sign in for access to CVSS Information.

 

Date

Date Information is available for this threat, please sign in for access to Date Information.

 

External Resources

External resources are available for this threat, please sign in for access to external resources.