Vulnerabilities > Squashtest
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-09-13 | CVE-2018-16987 | Insufficiently Protected Credentials vulnerability in Squashtest Squash TM Squash TM through 1.18.0 presents the cleartext passwords of external services in the administration panel, as demonstrated by a ta-server-password field in the HTML source code. | 7.2 |