SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sickrage | Sickrage | * | 9.2.101 (including) |