CWE-555
J2EE Misconfiguration: Plaintext Password in Configuration File
VariantDraft
Description
The J2EE application stores a plaintext password in a configuration file.
Storing a plaintext password in a configuration file allows anyone who can read the file to access the password-protected resource, making it an easy target for attackers.
Hierarchy (View 1000)
Parents
Children
none
CVEs mapped to this weakness (0)
No CVEs match the current filter.