CVE-2005-4661

Name of the Vulnerable Software and Affected Versions Campsite versions prior to 2.3.3

Description The issue concerns the notifyendsubs cron job, which sends an email containing an unencrypted MySQL password. This allows remote attackers to intercept the password.

Recommendations For versions prior to 2.3.3, update to version 2.3.3 or later to resolve the issue. As a temporary workaround, consider disabling the notifyendsubs cron job until a patch is available. Restrict access to the MySQL password to minimize the risk of exploitation.