Contents-Mall before 15 does not properly handle passwords, which allows remote attackers to discover the administrative password, and consequently obtain sensitive information or modify data, via unspecified vectors.
https://exchange.xforce.ibmcloud.com/vulnerabilities/64835
http://secunia.com/advisories/42950
http://mag.wb-i.net/2010_05_07.html