← CVECheck
HomeVulnerabilities

CVE-2001-1464 — HIGH severity vulnerability (Crystal Reports, when displaying data for a password protect)

Crystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and password in cleartext in the HTML page and the URL, which allows remote attackers to obtain passwords.

CVE IDCVE-2001-1464
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-01-10
Last modified2026-04-16
DescriptionCrystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and password in cleartext in the HTML page and the URL, which allows remote attackers to obtain passwords.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →