Man In The Middle Attack
For most software, exploits and intrusions are not a matter of IF, but WHEN. The average LAMP installation of a CMS stores hashes of passwords in MD5 format. When the software is exploited to expose the user password hashes, accepting hashed passwords for login then IS the password, without a MITM attack.
This article originally appeared in the Summer 2006 edition of 2600 The Hacker Quarterly.