Original URL: http://www.theregister.co.uk/2009/08/14/labour_mp_site_password_snafu/

Labour MP exposes password credentials

'Excuse me but your CMS is showing'

By John Leyden

Posted in Security, 14th August 2009 10:44 GMT

Web admins for Gisela Stuart MP inadvertently left password credentials for her site publically accessible up until Thursday.

The snafu, since corrected, was spotted by tech-savvy political blogger Dizzy Thinks when a (slightly mistyped) Google search turned up code instead of content. This revealed login details for the database behind the site.

Dizzy contacted site admins for the Edgbaston Labour MP who changed the passwords and purged the sensitive information. Admins at the Social Media Partnership explained that the rogue entry arose during a data migration, often the time when this type of snafu is liable to occur.

A full write-up of the incident can be found on Dizzy's blog here. ®