Lucene search
K

8 matches found

CNNVD
CNNVD
added 2026/06/11 12:0 a.m.19 views

SolidInvoice 安全漏洞

SolidInvoice is an open-source invoice processing application developed by SolidInvoice. Versions of SolidInvoice prior to 2.3.17 contained a security vulnerability. This vulnerability stemmed from API tokens being stored in the apitokens database table in plain text, which could allow attackers...

8.1CVSS5.3AI score0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/13 8:30 p.m.8 views

EUVD-2026-1996

hermes's raw options logging may disclose secrets passed in via subcommand options argument...

5.9CVSS6.3AI score0.00154EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/10/28 10:0 p.m.7 views

CVE-2025-62261

Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to...

6.9CVSS7AI score0.00228EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/27 9:11 p.m.4 views

CVE-2025-62261

Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to...

6.9CVSS6.6AI score0.00228EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/07/09 6:30 p.m.11 views

Jenkins Dead Man's Snitch Plugin vulnerability stores tokens in plain text

Jenkins Dead Man's Snitch Plugin 0.1 stores Dead Man's Snitch tokens unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system...

6.5CVSS6.2AI score0.00205EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2024/09/02 12:0 a.m.7 views

HashiCorp Vault Community Edition和HashiCorp Vault Enterprise 安全漏洞

HashiCorp Vault Enterprise and HashiCorp Vault Community Edition are both products of HashiCorp, Inc. of the U.S.A. HashiCorp Vault Enterprise is an enterprise information archiving platform.HashiCorp Vault HashiCorp Vault Enterprise is an enterprise information archiving platform, and HashiCorp...

6.5CVSS6.1AI score0.00474EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/30 12:0 a.m.5 views

Jenkins Plugin Build Notifications 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

4.3CVSS5.1AI score0.00483EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/05/09 12:0 a.m.6 views

Broadcom Brocade SANnav 安全漏洞

Broadcom Brocade SANnav is a suite of SAN management platforms from Broadcom Corporation USA. A security vulnerability exists in Broadcom Brocade SANnav versions prior to 2.2.0, which originates from logging REST API authentication tokens in plain text...

3.3CVSS4.9AI score0.0015EPSS
Exploits0References2
Rows per page
Query Builder