Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
LessPass 9.6.9 Stores Passwords in Plain Text
CVE-2025-70050
Summary
A security issue in LessPass 9.6.9 allows attackers to access stored passwords without needing a password. This means sensitive information could be compromised if an attacker gains access to the affected system. Update to the latest version of LessPass to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| lesspass | lesspass | 9.6.9 | – |
Original title
An issue pertaining to CWE-312: Cleartext Storage of Sensitive Information was discovered in lesspass lesspass v9.6.9 which allows attackers to obtain sensitive information.
Original description
An issue pertaining to CWE-312: Cleartext Storage of Sensitive Information was discovered in lesspass lesspass v9.6.9 which allows attackers to obtain sensitive information.
Vulnerability type
CWE-312
Cleartext Storage of Sensitive Information
Published: 9 Mar 2026 · Updated: 13 Mar 2026 · First seen: 9 Mar 2026