CVE-2002-0933

Datalex PLC BookIt! Consumer before 2.2 stores usernames and passwords in plaintext in a cookie, which could allow remote attackers to gain privileges via Cross-site scripting or sniffing attacks.

Date published : 2002-08-31

http://www.securityfocus.com/bid/4972

http://archives.neohapsis.com/archives/bugtraq/2002-06/0063.html