Cleartext Password Exposure in ContentKeeper by AHS
CVE-2006-5018

Currently unrated

Key Information:

Vendor

Contentkeeper Technologies

Status
Contentkeeper
Vendor
CVE Published:
27 September 2006

What is CVE-2006-5018?

ContentKeeper prior to version 123.25 has a serious security flaw where passwords are stored in cleartext within an INPUT element of the changepw.cgi script. This allows remote authenticated users to easily retrieve sensitive password data by accessing the vulnerable URI. Organizations using affected versions of ContentKeeper are at risk of unauthorized access and data breaches, necessitating immediate updates and security reviews.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.aushack.com/advisories/200606-contentkeeper.txt
x_refsource_MISC
http://www.securityfocus.com/bid/20152
vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/29113
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.