Password exposure in Cognito Software Moneyworks 8.0.3 and earlier allows attackers to gain administrator access to all data, because verbose logging writes the administrator password to a world-readable file.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-532,CWE-732,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| cognito | moneyworks | * |