High severity8.1NVD Advisory· Published Jul 3, 2018· Updated Jun 17, 2026
CVE-2018-11639
CVE-2018-11639
Description
Plaintext Storage of Passwords within Cookies in /var/www/xms/application/controllers/verifyLogin.php in the administrative console in Dialogic PowerMedia XMS before 3.5 SU2 allows remote attackers to access a user's password in cleartext.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <3.5 SU2
Patches
Vulnerability mechanics
References
1- d3adend.org/blog/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.