Ariba · Ariba Spend Management System · CVE-2005-2845
**Name of the Vulnerable Software and Affected Versions**
Ariba Spend Management System (affected versions not specified)
**Description**
The issue allows remote attackers to obtain sensitive information because the Ariba Spend Management System sends the `username` and `password` to the server in plaintext in a POST request.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.