CVE-2006-0920
published 2006-02-28CVE-2006-0920: Oi! Email Marketing System 3.0 (aka Oi! 3) stores the server's FTP password in cleartext on a Configuration web page, which allows local users with…
PriorityP412low1.7CVSS 2.0
AVLACLAuSCPINAN
EXPLOIT
EPSS
0.77%
50.9th percentile
Oi! Email Marketing System 3.0 (aka Oi! 3) stores the server's FTP password in cleartext on a Configuration web page, which allows local users with superadministrator privileges, or attackers who have obtained access to the web page, to view the password.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oi | email_marketing_system | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://securityreason.com/securityalert/483http://www.h4cky0u.org/advisories/HYSA-2006-003-oi-email.txthttp://www.securityfocus.com/archive/1/425924/100/0/threadedhttp://www.securityfocus.com/bid/16794http://securityreason.com/securityalert/483http://www.h4cky0u.org/advisories/HYSA-2006-003-oi-email.txthttp://www.securityfocus.com/archive/1/425924/100/0/threadedhttp://www.securityfocus.com/bid/16794
2006-02-28
Published