CVE-2023-38328 Information

Description

An issue was discovered in eGroupWare 17.1.20190111. An Improper Password Storage vulnerability affects the setup panel of under setup/manageheader.php which allows authenticated remote attackers with administrator credentials to read a cleartext database password.

Reference

https://www.gruppotim.it/it/footer/red-team.html