The default configuration of Slashcode before version 2.0 Alpha has a default administrative password, which allows remote attackers to gain Slashcode privileges and possibly execute arbitrary commands.Referenceshttp://www.securityfocus.com/bid/1731https://exchange.xforce.ibmcloud.com/vulnerabilities/5306http://archives.neohapsis.com/archives/bugtraq/2000-09/0366.html
