CVE-2026-0936

An Insertion of Sensitive Information into Log File vulnerability in B&R PVI client versions prior to 6.5 may be abused by an authenticated local attacker to gather credential information which is processed by the PVI client application. The logging function of the PVI client application is...

EUVD-2025-199803

Cleartext Storage of Sensitive Information Vulnerability in GX Works2 all versions allows an attacker to disclose credential information stored in plaintext from project files. As a result, the attacker may be able to open project files protected by user authentication using disclosed credential...

EUVD-2008-6524

Malware in sbrugna...

EUVD-2018-10288

Malware in sbrugna...

EUVD-2013-7129

Malware in sbrugna...

EUVD-2020-26735

Malware in sbrugna...

EUVD-2021-15892

Malware in sbrugna...

EUVD-2020-26734

Malware in sbrugna...

EUVD-2025-14074

Malicious code in bioql PyPI...

EUVD-2025-23841

Malicious code in bioql PyPI...

CVE-2025-54156

The Sante PACS Server Web Portal sends credential information without encryption...

CVE-2025-37110

A vulnerability was discovered in the storage policy for certain sets of sensitive credential information in the HPE Telco Network Function Virtual Orchestrator. Successful Exploitation could lead to unauthorized parties gaining access to sensitive system information...

CVE-2025-37110

A vulnerability was discovered in the storage policy for certain sets of sensitive credential information in the HPE Telco Network Function Virtual Orchestrator. Successful Exploitation could lead to unauthorized parties gaining access to sensitive system information...

CVE-2025-1499

Summary : CVE-2025-1499 affects IBM InfoSphere Information Server 11.7. The root cause is the explicit storage of credential information for database authentication in a cleartext parameter file, which can be viewed by an authenticated user, leading to potential information disclosure. The issue ...

CVE-2020-5573

Android App 'kintone mobile for Android' 1.0.0 to 2.5 allows an attacker to obtain credential information registered in the product via unspecified vectors...

CVE-2019-10445

A missing permission check in Jenkins Google Kubernetes Engine Plugin 0.7.0 and earlier allowed attackers with Overall/Read permission to obtain limited information about the scope of a credential with an attacker-specified credentials ID...

CVE-2013-7357

Unspecified vulnerability in the configuration service in SAP J2EE Engine allows remote attackers to obtain credential information via unknown vectors...

CVE-2025-27720

The Pixmeo Osirix MD Web Portal sends credential information without encryption, which could allow an attacker to steal credentials...

CVE-2024-8315

An Improper Handling of Insufficient Permissions or Privileges vulnerability in scripts used in B APROL 4.4-00P5 may allow an authenticated local attacker to read credential information...

CVE-2024-8315

An Improper Handling of Insufficient Permissions or Privileges vulnerability in scripts used in B&R APROL 4.4-00P5 may allow an authenticated local attacker to read credential information...