160 matches found
EUVD-2016-4052
Malware in sbrugna...
EUVD-2022-42593
Malicious code in bioql PyPI...
EUVD-2021-6593
Malicious code in bioql PyPI...
EUVD-2025-7055
Malicious code in bioql PyPI...
EUVD-2023-1418
Malicious code in bioql PyPI...
EUVD-2023-50547
Malicious code in bioql PyPI...
EUVD-2021-8856
Malicious code in bioql PyPI...
PT-2025-39833
Name of the Vulnerable Software and Affected Versions The product name cannot be determined. affected versions not specified Description The credentials needed to access the device’s web server are transmitted in base64 within the HTTP headers. Base64 encoding is not a secure cipher, allowing an...
CVE-2025-6505
Unauthorized access and impersonation can occur in versions 4.6.2.3226 and below of Progress Software's Hybrid Data Pipeline Server on Linux. This vulnerability allows attackers to combine credentials from different sources, potentially leading to client impersonation and unauthorized access. Whe...
PT-2025-29590 · Liteon · Ic80A +1
Name of the Vulnerable Software and Affected Versions: LITEON IC48A firmware versions prior to 01.00.19r LITEON IC80A firmware versions prior to 01.01.12e Description: LITEON IC48A and IC80A EV chargers store FTP-server-access-credentials in cleartext in their system logs. Recommendations: Update...
CVE-2025-6526
CVE-2025-6526 affects 70mai M300 up to 20250611, specifically the HTTP Server component. The vulnerability arises from insufficient protection of credentials, enabling an attack that can be performed from within the local network. The documented attack complexity is high and exploitation is descr...
CVE-2025-30183 CyberData 011209 SIP Emergency Intercom Insufficiently Protected Credentials
CyberData 011209 Intercom does not properly store or protect web server admin credentials...
CyberData 011209 Intercom 安全漏洞
CyberData 011209 Intercom is an emergency call appliance from CyberData USA . A security vulnerability exists in CyberData 011209 Intercom that stems from not properly storing web server administrator credentials...
CVE-2021-20827
Plaintext storage of a password vulnerability in IDEC PLCs FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 and earlier, WindEDIT Lite v1.3.1 and earlier, and Data File Manager v2.12.1 and earlier allows an...
CVE-2020-15381
Brocade SANnav before version 2.1.1 contains an Improper Authentication vulnerability that allows cleartext transmission of authentication credentials of the jmx server...
CVE-2020-29058
An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices...
CVE-2019-9872
In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. If the Settings Repository plugin was then used and configured to synchronize...
CVE-2019-9873
In several versions of JetBrains IntelliJ IDEA Ultimate, creating Task Servers configurations leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. The issue has been fixed in the following versions: 2019.1, 2018.3.5, 2018.2.8, and 2018.1.8...
CVE-2019-16203
Brocade Fabric OS Versions before v8.2.2a and v8.2.1d could expose the credentials of the remote ESRS server when these credentials are given as a command line option when configuring the ESRS client...
CVE-2025-0936
CVE-2025-0936 affects Arista EOS with a gNMI transport enabled, where using the gNOI File TransferToRemote RPC with remote-credentials can cause those credentials to be logged on the local EOS device or on remote accounting servers (TACACS, RADIUS). The issue is triggered when the OpenConfig gNOI...