ASP.NET Misconfiguration: Password in Configuration File
This page was marked to be reviewed for deletion.
#REDIRECT ASP.NET Misconfigurations
Last revision (mm/dd/yy): 02/10/2009
The clear-text passwords are in the configuration files. Clear-text passwords in the configuration files are subject to exposure in a variety of ways, including people getting access to the file, the file being served directly to a user due to a server error, a file download flaw, access to a backup copy, or some other exposure.
Related Technical Impacts