Seditio CMS version 1.7.1 suffers from an administrator password disclosure vulnerability.