cpe:/a:timeclock-software:employee_timeclock_software:0.99 CVE-2010-0124 2010-03-15T09:28:25.700-04:00 2017-08-16T21:31:53.180-04:00 2.1 LOCAL LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2010-03-15T14:10:00.000-04:00 BUGTRAQ 20100310 Secunia Research: Employee Timeclock Software "mysqldump" Password Disclosure BID 38642 SECUNIA 38739 OSVDB 62830 MISC http://secunia.com/secunia_research/2010-12/ XF timeclock-mysqldump-info-disclosure(56800) Employee Timeclock Software 0.99 places the database password on the mysqldump command line, which allows local users to obtain sensitive information by listing the process.