CVE-2023-31069

CRITICAL

TSplus Remote Access <16.0.2.14 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-31069. PoCs published by shinnai.

AI-analyzed exploit summary This exploit details an insecure credential storage vulnerability in TSPlus Remote Work (v. 16.0.0.0), where credentials are stored in cleartext within the HTML login page. The provided code snippet demonstrates the exposed credentials in JavaScript variables.

Description

An issue was discovered in TSplus Remote Access through 16.0.2.14. Credentials are stored as cleartext within the HTML source code of the login page.

Exploits (1)

exploitdb WRITEUP

by shinnai · textremotewindows

https://www.exploit-db.com/exploits/51681

View Code ZIP pw:eip

This exploit details an insecure credential storage vulnerability in TSPlus Remote Work (v. 16.0.0.0), where credentials are stored in cleartext within the HTML login page. The provided code snippet demonstrates the exposed credentials in JavaScript variables.

Classification

Writeup 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: TSPlus Remote Work up to 16.0.0.0

No auth needed

Prerequisites: Access to the web login page

MITRE ATT&CK

T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry

http://packetstormsecurity.com/files/174271/TSPlus-16.0.0.0-Insecure-Credential-Storage.html

Third Party Advisory, VDB Entry

https://www.exploit-db.com/exploits/51681

Scores

CVSS v3 9.8

EPSS 0.0141

EPSS Percentile 81.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-312

Status published

Products (2)

tsplus/tsplus_remote_access < 16.0.0.0

tsplus/tsplus_remote_work < 16.0.0.0

Published Sep 11, 2023

Tracked Since Feb 18, 2026