Tag
credential-exposure
Safeguard articles tagged "credential-exposure" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Container Security
The 2019 Docker Hub Database Breach Exposing User Credent...
In April 2019, Docker Hub exposed 190,000 accounts' credentials and GitHub/Bitbucket tokens. Here's what happened, what leaked, and why it still matters for supply chain security.
Nov 19, 20257 min read
Vulnerability Analysis
CVE-2018-18074: requests library leaks Authorization head...
The Python requests library leaked Authorization headers on same-host HTTPS-to-HTTP redirects, exposing credentials to sniffing before v2.20.0.
Oct 7, 20258 min read
Vulnerability Analysis
Palo Alto Expedition CVE-2024-9463: Command Injection in Migration Tool
Critical command injection vulnerabilities in Palo Alto Networks Expedition tool exposed firewall credentials and configurations, with CISA confirming active exploitation in November 2024.
Nov 7, 20246 min read