CVE-2019-10682 (django-nopassword)by Jeremyin Security Bulletinson Posted on March 23, 2020 django-nopassword before 5.0.0 stores cleartext secrets in the database.