CVE-2018-19466
Portainer before 1.20.0 stores LDAP credentials (master password) in cleartext and exposes a means to retrieve them via API calls. The issue, as described, affects Portainer’s handling of LDAP data and could lead to exposure of sensitive credentials if an attacker can access the API. No exploitat...