SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
sickrage sickrage
CVE-2018-9160
Sickrage cleartext github credentials CVE-2018-9160 About Exploit Title: SickRage Clear-Text Credentials in HTTP Response Date: 2018-04-01 Exploit Author: Sven Fassbender Contact: twittercom/mezdanak Vendor Homepage: sickragegithubio Software Link: githubcom/SickRage/SickRage Version: < v20180309-1 CVE : CVE-2018-9160 Category: webapps