VULHUB ™

PHPGroupWare is a freely available, open source groupware system written in PHP. It is distributed and maintained by the PHPGroupWare project. PHPGroupWare is reported to contain a plaintext cookie authentication credentials information disclosure vulnerability. If the web administration of PHPGroupWare is not conducted over an encrypted link, an attacker with the ability to sniff network traffic could easily retrieve these passwords. This may aid the attacker in further system compromise. Versions prior to 0.9.16.002 are reported susceptible to this vulnerability.

PHPGroupWare is a freely available, open source groupware system written in PHP. It is distributed and maintained by the PHPGroupWare project. PHPGroupWare is reported to contain a plaintext cookie authentication credentials information disclosure vulnerability. If the web administration of PHPGroupWare is not conducted over an encrypted link, an attacker with the ability to sniff network traffic could easily retrieve these passwords. This may aid the attacker in further system compromise. Versions prior to 0.9.16.002 are reported susceptible to this vulnerability.