CVE-2003-1454 Information

Description

Invision Power Services Invision Board 1.0 through 1.1.1 when a forum is password protected stores the administrator password in a cookie in plaintext which could allow remote attackers to gain access.

Reference

http://securityreason.com/securityalert/3276 http://www.securityfocus.com/archive/1/319747 http://www.securityfocus.com/bid/7440 https://exchange.xforce.ibmcloud.com/vulnerabilities/11871