Vulnetix
Try Vulnetix Request Demo
GCVE-VVD-CERTCC-2000-403307
Advisory Published
Vulnetix · Advisory published January 11, 2001
The Seagate Crystal Reports product exposes passwords to back-end databases in certain configurations. In particular, the username and password are transmitted in plaintext from the client browser to the server as part of the URL when using technologies other than Active Server Pages (ASP).
Download JSON Open in Console

Risk Scores

certcc-cam
certcc-cam
impact14population6exploitation0widely_known1score_current0.3024ease_of_exploitation16

References

Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
advisory
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url
Seagate Crystal Reports exposes cleartext username/password pairs when embedded in URL or HTTP request
url

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON