CVE-2014-3445

Published: 2020-01-28T15:15Z

Last Modified: 2024-11-21T02:08Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

backup.php in HandsomeWeb SOS Webpages before 1.1.12 does not require knowledge of the cleartext password, which allows remote attackers to bypass authentication by leveraging knowledge of the administrator password hash. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt