Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-256

CWE-256

High likelihood

Plaintext Storage of a Password

Parent: CWE-522 - Insufficiently Protected Credentials

The product stores a password in plaintext within resources such as memory or files.

204 vulnerabilities with CWE-256

CVE-2025-53656 MEDIUM

Jenkins ReadyAPI Functional Testing Plugin <1.11 - Info Disclosure

CVE-2025-53655 MEDIUM

Jenkins Statistics Gatherer Plugin <2.0.3 - Info Disclosure

CVE-2025-1709 MEDIUM

endress meac300-fnade4_firmware < 0.16.0 - Plaintext Storage of PostgreSQL Credentials

CVE-2025-6561 CRITICAL

Hunt Electronic Hybrid DVR - Info Disclosure

CVE-2025-6560 CRITICAL

Sapido Wireless Router - Info Disclosure

CVE-2025-5893 CRITICAL

Smart Parking Management System - Info Disclosure

CVE-2025-5760 MEDIUM

Simple History <5.8.1 - Info Disclosure

CVE-2025-2500 HIGH

Hitachi Energy Asset Suite 9.6.4.4-9.7 - Plaintext Password Storage in SOAP Web Services

CVE-2025-48046 MEDIUM

NetFax Server < 3.0.1.0 - Authenticated Cleartext Password Exposure via SMTP Config Endpoint

CVE-2025-33079 MEDIUM

IBM Controller <11.1.0 - Info Disclosure

CVE-2025-43005 MEDIUM

SAP GUI for Windows - Info Disclosure

CVE-2025-3758 HIGH

Netis Systems WF2220 - Unauthenticated Plaintext Password Exposure via netcore_get.cgi Endpoint

CVE-2025-0936 MEDIUM

Arista EOS 4.30.1F-4.30.8M, 4.31.0-4.31.4M, 4.32.0-4.32.2M, 4.33.0 - Plaintext Password Exposure

CVE-2025-4286 LOW

Intelbras InControl <2.21.59 - Info Disclosure

CVE-2025-2770 MEDIUM

BEC Technologies Router Firmware - Authenticated Cleartext Storage of Sensitive Information in Web Interface

CVE-2025-25985 LOW

Macro-video Technologies Co.,Ltd V380E6_C1 IP camera - RCE

CVE-2025-24375 MEDIUM

Charmed MySQL K8s Operator <221 - SQL Injection

CVE-2025-31724 MEDIUM

Jenkins Cadence vManager Plugin <4.0.0-282.v5096a_c2db_275 - Info D...

CVE-2025-2355 LOW

BlackVue App 3.65 - Info Disclosure

CVE-2025-27662 CRITICAL

Vasion Print <22.0.843 - Info Disclosure

CVE-2025-27656 CRITICAL

Vasion Print <22.0.862 - Info Disclosure

CVE-2025-25727 MEDIUM

Bosscomm IF740 Firmware 11001.7078 v11001.0000 and System 6.25 6.00 - Plaintext Password Storage

CVE-2025-21111 HIGH

Dell VxRail <8.0.312 - Info Disclosure

CVE-2025-21102 HIGH

Dell VxRail <7.0.532 - Info Disclosure

CVE-2024-45636 MEDIUM

IBM Security QRadar EDR 3.12-3.12.24 - Plaintext Credential Storage

Previous Page 3 of 9 Next

Details

Vulnerabilities 204

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy