Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Steeltoe: TLS private keys written to /tmp with default permissions, never deleted
SolidInvoice: API tokens stored as plaintext in the database allowing full credential compromise on database breach
Improper access control in the ticketing integration settings in Devolutions Server allows an authenticated low-privileged user to obtain cleartext...
Unencrypted storage of authentication state in StrongDM Desktop Application state.kv file
RustFS: Sensitive Information Leakage (SessionToken and SecretAccessKey) in RustFS Logs [Debug Mode]
Information Exposure Vulnerability in CP-Plus Wi-Fi Camera
Cleartext storage of HMAC signing key in Amazon SageMaker Python SDK ModelBuilder/Serve path
Clear Text Storage of Sensitive Information on EcoStruxure™ Machine Expert HVAC
BIG-IP DNS tmsh vulnerability
BIG-IP iControl REST vulnerability
JunoClaw: MCP write tools exposed raw BIP-39 mnemonic as a tool-call parameter
Sangoma Switchvox before 8
Cillium exposes sensitive information included in the cilium-bugtool debug archive
electerm: Full process.env exposed to renderer via window.pre.env in electerm
Prometheus Azure AD remote write OAuth client secret exposed via config API
Assisted-service: assisted-service: authenticated users can gain administrative access to openshift clusters via credential disclosure
OpenClaw < 2026.3.31 - Nostr Private Key Exposure via config.get Redaction Bypass
Sanluan PublicCMS Failed Login LoginAdminController.java log_login cleartext storage in file
TYPO3 CMS Stores Cleartext Password in User Settings Module
langflow-ai langflow Project Creation Endpoint projects.py encrypt_auth_settings cleartext storage in file
Showing 1 - 20 of 1,000+ results