Krusader : Security Vulnerabilities, CVEs,
Krusader 1.50-beta1 up to 1.70.0 stores passwords for remote connections in cleartext in the bookmark file (krbookmarks.xml), which allows attackers to steal passwords by obtaining the file.
Max CVSS
7.5
EPSS Score
0.41%
Published
2006-07-25
Updated
2011-03-08
The Popular URL capability (popularurls.cpp) in Krusader 1.60.0 and 1.70.0-beta1 saves passwords in cleartext in the krusaderrc file when the user enters URLs containing passwords in the panel URL field, which might allow attackers to access other sites.
Max CVSS
4.0
EPSS Score
0.09%
Published
2005-11-27
Updated
2008-09-05
2 vulnerabilities found