CVE-2018-9160
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
Date published : 2018-03-31
https://www.exploit-db.com/exploits/44545/
https://github.com/SickRage/SickRage/commit/8156a74a68aea930d1e1047baba8b115c3abfc44