Vulnerabilities > Kcapifony Project > Kcapifony

DATE CVE VULNERABILITY TITLE RISK
2018-01-10 CVE-2014-5001 Information Exposure vulnerability in Kcapifony Project Kcapifony 2.1.6
lib/ksymfony1.rb in the kcapifony gem 2.1.6 for Ruby places database user passwords on the (1) mysqldump, (2) pg_dump, (3) mysql, and (4) psql command lines, which allows local users to obtain sensitive information by listing the processes.
local
low complexity
kcapifony-project CWE-200
2.1