### [CVE-2022-1021](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1021)
![](https://img.shields.io/static/v1?label=Product&message=chatwoot%2Fchatwoot&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%202.6.0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-922%20Insecure%20Storage%20of%20Sensitive%20Information&color=brighgreen)

### Description

Insecure Storage of Sensitive Information in GitHub repository chatwoot/chatwoot prior to 2.6.0.

### POC

#### Reference
- https://huntr.dev/bounties/a8187478-75e1-4d62-b894-651269401ca3
- https://huntr.dev/bounties/a8187478-75e1-4d62-b894-651269401ca3

#### Github
No PoCs found on GitHub currently.