Vulnerabilities > Cleartext Storage of Sensitive Information
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-18 | CVE-2021-31820 | Cleartext Storage of Sensitive Information vulnerability in Octopus Server In Octopus Server after version 2018.8.2 if the Octopus Server Web Request Proxy is configured with authentication, the password is shown in plaintext in the UI. | 7.5 |
| 2021-08-14 | CVE-2020-36473 | Cleartext Storage of Sensitive Information vulnerability in Ucweb UC UCWeb UC 12.12.3.1219 through 12.12.3.1226 uses cleartext HTTP, and thus man-in-the-middle attackers can discover visited URLs. | 3.7 |
| 2021-08-13 | CVE-2020-18759 | Cleartext Storage of Sensitive Information vulnerability in Dcce Mac1100 PLC Firmware An information disclosure vulnerability exists in the EPA protocol of Dut Computer Control Engineering Co.'s PLC MAC1100. | 7.5 |
| 2021-08-06 | CVE-2021-37548 | Cleartext Storage of Sensitive Information vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2021.1, passwords in cleartext sometimes could be stored in VCS. | 7.5 |
| 2021-08-03 | CVE-2021-33323 | Cleartext Storage of Sensitive Information vulnerability in Liferay DXP and Liferay Portal The Dynamic Data Mapping module in Liferay Portal 7.1.0 through 7.3.2, and Liferay DXP 7.1 before fix pack 19, and 7.2 before fix pack 7, autosaves form values for unauthenticated users, which allows remote attackers to view the autosaved values by viewing the form as an unauthenticated user. | 7.5 |
| 2021-08-03 | CVE-2021-33325 | Cleartext Storage of Sensitive Information vulnerability in Liferay DXP 7.0 The Portal Workflow module in Liferay Portal 7.3.2 and earlier, and Liferay DXP 7.0 before fix pack 93, 7.1 before fix pack 19, and 7.2 before fix pack 7, user's clear text passwords are stored in the database if workflow is enabled for user creation, which allows attackers with access to the database to obtain a user's password. | 4.9 |
| 2021-07-25 | CVE-2021-37452 | Cleartext Storage of Sensitive Information vulnerability in NCH Quorum NCH Quorum v2.03 and earlier allows local users to discover cleartext login information relating to users by reading the local .dat configuration files. | 5.5 |
| 2021-07-25 | CVE-2021-37468 | Cleartext Storage of Sensitive Information vulnerability in NCH Reflect Customer Relationship Management 3.01 NCH Reflect CRM 3.01 allows local users to discover cleartext user account information by reading the configuration files. | 3.3 |
| 2021-07-22 | CVE-2021-31581 | Cleartext Storage of Sensitive Information vulnerability in Akkadianlabs OVA Appliance and Provisioning Manager The restricted shell provided by Akkadian Provisioning Manager Engine (PME) can be escaped by abusing the 'Edit MySQL Configuration' command. | 4.4 |
| 2021-07-19 | CVE-2020-22741 | Cleartext Storage of Sensitive Information vulnerability in Baidu Xuperchain 3.6.0 An issue was discovered in Xuperchain 3.6.0 that allows for attackers to recover any arbitrary users' private key after obtaining the partial signature in multisignature. | 7.5 |