EUVD-2019-13514

Malware in sbrugna...

EUVD-2024-46916

Malicious code in bioql PyPI...

EUVD-2023-2019

Malicious code in bioql PyPI...

EUVD-2022-41232

Malicious code in bioql PyPI...

CVE-2025-53671

Jenkins Nouvola DiveCloud Plugin 1.08 and earlier does not mask DiveCloud API Keys and Credentials Encryption Keys displayed on the job configuration form, increasing the potential for attackers to observe and capture them...

CVE-2023-0356

CVE-2023-0356 affects SOCOMEC MODULYS GP Netvision firmware (versions up to 7.20). Root cause: weak encoding of credentials over HTTP connections (CWE-261), enabling potential disclosure of sensitive information. Affected product: MODULYS GP Netvision; vulnerability details are consistent across ...

Hitachi FOXMAN-UN 加密问题漏洞

Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. Hitachi FOXMAN-UN has a security vulnerability that stems from its use of DES ciphers to encrypt user credentials used to access network elements.DES is no longer considered secure because its short 56-bit...

Intland codeBeamer ALM 安全漏洞

Intland Software codeBeamer ALM is an application lifecycle management platform from Intland Software, Germany. The platform supports application lifecycle management, requirements management, risk management and software development. A security vulnerability exists in Intland codeBeamer ALM 10,...

PT-2019-11718 · Jenkins · Jenkins Aqua Microscanner Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Aqua MicroScanner Plugin versions 1.0.5 and earlier Description: The issue concerns the storage of credentials in the Jenkins Aqua MicroScanner Plugin. Specifically, the plugin stored credentials unencrypted in its global configuratio...

PT-2019-11704 · Jenkins · Jenkins Jira-Ext Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins jira-ext Plugin versions 0.8 and earlier Description: The issue concerns the storage of credentials in the global configuration file on the Jenkins master. Specifically, credentials are stored unencrypted in the file...

PT-2019-11689 · Jenkins · Youtrack-Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins youtrack-plugin Plugin versions 0.7.1 and older Description: The issue concerns the storage of credentials in the global configuration file on the Jenkins master or controller. Specifically, credentials were stored unencrypted in the...

CVE-2015-1010

Rockwell Automation RSView32 7.60.00 aka CPR9 SR4 and earlier does not properly encrypt credentials, which allows local users to obtain sensitive information by reading a file and conducting a decryption attack...

CVE-2015-1358

Siemens SIMATIC WinCC (TIA Portal) CVE-2015-1358: The remote-management modules in WinCC (TIA Portal) Multi Panels, Comfort Panels and RT Advanced, and in WinCC Flexible panels/runtime before the stated SPs, transmit credentials in weak or unencrypted form. This allows network-sniffing attackers ...