EUVD-2020-29223

Malware in sbrugna...

CVE-2023-28912

The CVE-2023-28912 issue affects the VW/Skoda MIB3 infotainment unit (notably in Skoda Superb III with OEM part 3V0035820). The root cause is storing the synchronized phone contact book in clear text, enabling an attacker with system code execution privileges or physical access to exfiltrate vehi...

CVE-2024-53865

zhmcclient is a pure Python client library for the IBM Z HMC Web Services API. In affected versions the Python package "zhmcclient" writes password-like properties in clear text into its HMC and API logs in the following cases: 1. The 'boot-ftp-password' and 'ssc-master-pw' properties when creati...

PT-2023-25446 · Phpjabbers · Phpjabbers Class Scheduling System

Name of the Vulnerable Software and Affected Versions: PHPJabbers Class Scheduling System version 1.0 Description: The issue is related to a lack of encryption on passwords when editing a user account, specifically on the update user page. This allows an attacker to capture all user names and...

MGASA-2015-0483 Updated keepassx packages fix CVE-2015-8378

Updated keepassx package fixes security vulnerability: Cancelling an export operation creates clear text copy of all of the user's KeePassX password database entries. CVE-2015-8378...

Synergy Protocol Information Disclosure Vulnerability (Windows)

This host is installed with Synergy and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbsynergyprotocolinfodiscvulnwin.nasl 8189 2017-12-20 09:10:19Z cfischer $ Synergy Protocol Information Disclosure Vulnerability Windows Authors: Sooraj KS Copyright: Copyrigh...

Stock portfolio sent via clear text in Datek Streamer® application

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 S4R - A Managed Services Company Security - Systems - Storage - Solutions http://www.s4r.com [email protected] Title: Stock portfolio sent via clear text in Datek Streamer® application Date: November 9, 2001 1. Description Although the user's primary Datek...