Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-256

CWE-256

High likelihood

Plaintext Storage of a Password

Parent: CWE-522 - Insufficiently Protected Credentials

The product stores a password in plaintext within resources such as memory or files.

200 vulnerabilities with CWE-256

CVE-2026-6597 LOW

langflow-ai langflow Flow Using API core.py has_api_terms credentials storage

CVE-2026-35556 HIGH

Plaintext storage of a password in OpenPLC_V3

CVE-2026-33216 HIGH

NATS has MQTT plaintext password disclosure

CVE-2026-31850 MEDIUM

Plaintext storage of credentials in configuration backup in Nexxt Nebula 300+

CVE-2026-4251 LOW

CityData CityChat ai.citydata.citychat credentials.json credentials storage

CVE-2026-4250 LOW

Albert Sağlık Hizmetleri ve Ticaret Albert Health Google Cloud Service Account Key service-account.json credentials storage

CVE-2026-4243 LOW

La Nacion App app.lanacion.activity BuildConfig.java credentials storage

CVE-2026-4242 LOW

BabyChakra Pregnancy & Parenting App app.babychakra.babychakra Configuration.java credentials storage

CVE-2026-4217 LOW

XREAL Nebula App ai.nreal.nebula.universal CloudStoragePlugin.java key management

CVE-2026-22285 MEDIUM

Dell DDMA <26.02 - Info Disclosure

CVE-2026-28360 MEDIUM

NocoDB <0.301.3 - Info Disclosure

CVE-2026-21660 CRITICAL

Frick Controls Quantum HD <10.22 - Info Disclosure

CVE-2026-23797 MEDIUM

Quick.Cart <6.7 - Info Disclosure

CVE-2026-21417 HIGH

Dell CloudBoost Virtual Appliance <19.14.0.0 - Privilege Escalation

CVE-2025-36335 MEDIUM

Vulnerabilities found

CVE-2025-15624 CRITICAL

Plaintext Storage of a Password in Sparx Pro Cloud Server.

CVE-2025-36258 HIGH

IBM InfoSphere Information Server is vulnerable due to plaintext storage of a password

CVE-2025-36425 MEDIUM

IBM Db2 11.5.0-11.5.9/12.1.0-12.1.3 - Info Disclosure

CVE-2025-12680 MEDIUM

Brocade SANnav <2.4.0b - Info Disclosure

CVE-2025-25051 MEDIUM

Unknown - Info Disclosure

CVE-2025-15113 CRITICAL

Ksenia Security Lares 4.0 Home Automation <1.6 - Code Injection

CVE-2025-15128 MEDIUM

ZKTeco BioTime <9.0.3/9.0.4/9.5.2 - Info Disclosure

CVE-2025-66910 MEDIUM

Turms Server v0.10.0-SNAPSHOT - Info Disclosure

CVE-2025-65009 HIGH

WODESYS WD-R608U - Info Disclosure

CVE-2025-14183 MEDIUM

SGAI Space1 NAS N1211DS <1.0.915 - Info Disclosure

Page 1 of 8 Next

Details

Vulnerabilities 200

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy