PHPJabbers Class Scheduling System 1.0 lacks encryption on the password when editing a user account (update user page) allowing an attacker to capture all user names and passwords in clear text.
CPE | Name | Operator | Version |
---|---|---|---|
class_scheduling_system | eq | 1.0 |