backup.php in HandsomeWeb SOS Webpages before 1.1.12 does not require knowledge of the cleartext password, which allows remote attackers to bypass authentication by leveraging knowledge of the administrator password hash.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-01-28T14:09:12
Updated: 2024-08-06T10:43:06.383Z
Reserved: 2014-05-09T00:00:00
Link: CVE-2014-3445
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-01-28T15:15:14.920
Modified: 2020-01-31T19:11:28.673
Link: CVE-2014-3445
Redhat
No data.