CWE-260
Password in Configuration File
The product stores a password in a configuration file that might be accessible to actors who do not know the password.
Official CWE-260 definition at MITREImpactr finds and proves weaknesses like CWE-260 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist