Password Disclosure Vulnerability in Employee Timeclock Software by Employee Timeclock
CVE-2010-0124

Currently unrated

Key Information:

Vendor: Timeclock-software
Status: Employee Timeclock Software
Vendor: CVE Published:; 15 March 2010

🔔 Create Timeclock-software Vulnerability Alert

What is CVE-2010-0124?

The Employee Timeclock Software version 0.99 contains a vulnerability that exposes the database password via the mysqldump command line. This flaw allows local users to access sensitive information by listing the process, potentially compromising the security of the system. Immediate remediation is advised to safeguard against unauthorized access and data breaches.

References

http://www.securityfocus.com/archive/1/509996/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/38739

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/secunia_research/2010-12/

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 15, 2010
Vulnerability Reserved
Jan 4, 2010

CVE-2010-0124 Data

JSON