DescriptionThe clear-text passwords are in the configuration files. Clear-text passwords in the configuration files are subject to exposure in a variety of ways, including people getting access to the file, the file being served directly to a user due to a server error, a file download flaw, access to a backup copy, or some other exposure.
|
Home Page>Security
Knowledgebase>Vulnerability>Password
Management Vulnerability>ASP.NET
Misconfiguration: Password in Configuration File
