263 matches found
EUVD-2021-8780
Dell VxRail versions before 7.0.200 contain a Plain-text Password Storage Vulnerability in VxRail Manager. A sys-admin user may exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable...
CVE-2024-41687
This vulnerability exists in SyroTech SY-GPON-1110-WDONT Router due to transmission of password in plain text. A remote attacker could exploit this vulnerability by intercepting transmission within an HTTP session on the vulnerable system. Successful exploitation of this vulnerability could allow...
CVE-2019-16210
Brocade SANnav versions before v2.0, logs plain text database connection password while triggering support save...
CVE-2024-42197
The CVE-2024-42197 entry concerns HCL Workload Scheduler storing user credentials in plain text, allowing a local non-privileged user to read them. The available documents consistently describe the issue as cleartext credential storage without details on affected versions or root cause beyond the...
CVE-2024-42197 HCL Workload Scheduler is vulnerable to plain text storage of a password
HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...
EUVD-2020-21869
Malware in sbrugna...
EUVD-2014-8364
Malware in sbrugna...
EUVD-2018-12461
Malware in sbrugna...
EUVD-2019-13376
Malware in sbrugna...
EUVD-2020-21857
Malware in sbrugna...
EUVD-2020-18824
Malware in sbrugna...
EUVD-2022-27703
Malicious code in bioql PyPI...
EUVD-2021-8819
Malicious code in bioql PyPI...
EUVD-2024-39132
Malicious code in bioql PyPI...
EUVD-2024-51942
Malicious code in bioql PyPI...
EUVD-2024-19976
Malicious code in bioql PyPI...
EUVD-2025-24242
Malicious code in bioql PyPI...
XWiki PDF export jobs store sensitive cookies unencrypted in job statuses
Impact The PDF export uses a background job that runs on the server-side. Jobs like this have a status that is serialized in the permanent directory when the job is finished. The job status includes the job request. The PDF export job request is initialized, before the job starts, with some conte...
CVE-2025-40752
A vulnerability has been identified in POWER METER SICAM Q100 7KG9501-0AA01-0AA1 All versions = V2.60 = V2.60 = V2.60 = V2.60 = V2.70 V2.80. Affected devices store the password for the SMTP account as plain text. This could allow an authenticated local attacker to extract it and use the configure...
CVE-2025-40753
A vulnerability has been identified in POWER METER SICAM Q100 7KG9501-0AA01-0AA1 All versions = V2.60 = V2.60 = V2.60 = V2.60 = V2.70 V2.80. Affected devices export the password for the SMTP account as plain text in the Configuration File. This could allow an authenticated local attacker to extra...