Site icon API Security Blog

Information Disclosure

github.com/rancher/rancher is vulnerable to information disclosure. The vulnerability exists because of the lack of sanitization in credentials in cluster template answers of `cluster_store.go`, leading to plaintext storage and exposure of credentials, passwords and API tokens.Read More

Exit mobile version