SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
References
Link | Resource |
---|---|
https://github.com/SickRage/SickRage/commit/8156a74a68aea930d1e1047baba8b115c3abfc44 | Patch Third Party Advisory |
https://github.com/SickRage/sickrage.github.io/blob/master/sickrage-news/CHANGES.md | Broken Link Third Party Advisory |
https://www.exploit-db.com/exploits/44545/ | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-03-31T21:00:00
Updated: 2018-04-28T09:57:01
Reserved: 2018-03-31T00:00:00
Link: CVE-2018-9160
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-03-31T21:29:00.453
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-9160
JSON object: View
Redhat Information
No data.
CWE