CVE-2026-6332 Clear Text Storage of Sensitive Information on EcoStruxure™ Machine Expert HVAC

CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the disclosure of a sensitive information which could result in revealing protected source code and loss of confidentiality, When an authorized attacker accesses the source code for editing or compiling it...

CVE-2026-28678 dsa-hub-server: Clear-Text Storage of Sensitive Data

DSA Study Hub is an interactive educational web application. Prior to commit d527fba, the user authentication system in server/routes/auth.js was found to be vulnerable to Insufficiently Protected Credentials. Authentication tokens JWTs were stored in HTTP cookies without cryptographic protection...

Gallagher Command Centre Server 安全漏洞

Gallagher Command Centre Server is a management system used by Gallagher New Zealand to monitor and manage infrastructure in buildings. A security vulnerability exists in Gallagher Command Centre Server, which stems from storing sensitive information in clear text and could lead to compromised...

SAMSUNG Smart Switch 安全漏洞

SAMSUNG Smart Switch is a data migration tool from Samsung South Korea. A security vulnerability exists in SAMSUNG Smart Switch versions prior to 3.7.67.2, which stems from storing sensitive information in clear text and could lead to a local attacker accessing sensitive data...

EUVD-2019-15201

Malware in sbrugna...

EUVD-2019-8735

Malware in sbrugna...

EUVD-2017-18585

Malware in sbrugna...

EUVD-2017-14249

Malware in sbrugna...

EUVD-2021-6732

Malicious code in bioql PyPI...

EUVD-2024-37241

Malicious code in bioql PyPI...

EUVD-2023-32532

Malicious code in bioql PyPI...

EUVD-2021-28332

Malicious code in bioql PyPI...

EUVD-2022-27448

Malicious code in bioql PyPI...

EUVD-2022-15409

Malicious code in bioql PyPI...

Obsidian GitHub Copilot Plugin 安全漏洞

Obsidian GitHub Copilot Plugin is a Github Copilot plugin by the individual developer Pierre-Adrien Vasseur. A security vulnerability exists in versions of Obsidian GitHub Copilot Plugin prior to 1.1.7, which stems from storing Github API tokens in clear-text form, which could lead to unauthorize...

CVE-2023-28912

The MIB3 unit stores the synchronized phone contact book in clear-text, allowing an attacker with either code execution privilege on the system or physical access to the system to obtain vehicle owner's contact data. The vulnerability was originally discovered in Skoda Superb III car with MIB3...

Volkswagen MIB3 Infotainment 安全漏洞

Volkswagen MIB3 Infotainment is an infotainment system on a vehicle from Volkswagen Germany. A security vulnerability exists in Volkswagen MIB3 Infotainment that stems from storing synchronized phone contacts in clear text, which could lead to an attacker gaining access to vehicle owner contact...

PT-2025-27316 · Mib3 · Mib3

Name of the Vulnerable Software and Affected Versions: MIB3 unit affected versions not specified Description: The issue concerns the storage of the synchronized phone contact book in clear-text by the MIB3 unit. This allows an attacker with either code execution privilege on the system or physica...

Bharti Airtel Thanks App 安全漏洞

Bharti Airtel Thanks App is a mobile application from Bharti Airtel India that provides users with a variety of features related to telecom services, such as bill checking, recharge and payment, package management, and promotion participation. Bharti Airtel Thanks App version 4.105.4 suffers from...

DELL ThinOS Information Disclosure Vulnerability

DELL ThinOS is a thin client operating system from Dell designed for virtual workspaces, providing a highly secure and efficient virtual desktop experience. DELL ThinOS suffers from an information disclosure vulnerability that originates from storing sensitive information in clear text, which can...