CVE-2002-2143

{"id": "CVE-2002-2143", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2002-12-31T05:00:00.000", "references": [{"url": "http://www.iss.net/security_center/static/10298.php", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/293871", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/5866", "tags": ["Exploit"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.html."}], "lastModified": "2008-09-05T20:32:26.667", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mysimplenews:mysimplenews:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "710BB288-144A-4D13-8239-B253298E292A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}