('binary' encoding is not supported, stored as-is) Invision Power Board Plaintext Password Disclosure Vuln ------------------------------------------------------- Version: All? Problem: Invision Power Board gives an admin the option to create a pass protected forum. The problem with this is that the password is then stored in the cookie fully readable as it is shown in plaintext. Credits: All credit goes to JeiAr of GulfTech Computers
This archive was generated by hypermail 2b30 : Fri Apr 25 2003 - 14:01:10 PDT