Vulnerabilities > Kcapifony Project > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-10	CVE-2014-5001	Information Exposure vulnerability in Kcapifony Project Kcapifony 2.1.6 lib/ksymfony1.rb in the kcapifony gem 2.1.6 for Ruby places database user passwords on the (1) mysqldump, (2) pg_dump, (3) mysql, and (4) psql command lines, which allows local users to obtain sensitive information by listing the processes. local low complexity kcapifony-project CWE-200	2.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.