CWE-526
Cleartext Storage of Sensitive Information in an Environment Variable
The product uses an environment variable to store unencrypted sensitive information.
Official CWE-526 definition at MITREImpactr finds and proves weaknesses like CWE-526 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist