Sensitive Cleartext Information Storage in Database

Sensitive Cleartext Information Storage in Database

CVE-2020-17495 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

django-celery-results through 1.2.1 stores task results in the database. Among the data it stores are the variables passed into the tasks. The variables may contain sensitive cleartext information that does not belong unencrypted in the database.

Learn more about our Web Application Penetration Testing UK.