PT-2024-23439 · Unknown · Fg Prestashop To Woocommerce

Name of the Vulnerable Software and Affected Versions: FG PrestaShop to WooCommerce versions n/a through 4.45.1 Description: The issue is related to the insertion of sensitive information into log files. This can potentially expose confidential data. There is no information provided about the...

CVE-2024-25959

Dell PowerScale OneFS versions 9.4.0.x through 9.7.0.x contains an insertion of sensitive information into log file vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to sensitive information disclosure, escalation of privileges...

CVE-2024-25959

Dell PowerScale OneFS versions 9.4.0.x through 9.7.0.x contains an insertion of sensitive information into log file vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to sensitive information disclosure, escalation of privileges...

CVE-2024-25959

Dell PowerScale OneFS versions 9.4.0.x through 9.7.0.x contains an insertion of sensitive information into log file vulnerability. A low privileged local attacker could potentially exploit this vulnerability, leading to sensitive information disclosure, escalation of privileges...

CVE-2024-25923

Insertion of Sensitive Information into Log File vulnerability in PeepSo Community by PeepSo.This issue affects Community by PeepSo: from n/a through 6.2.7.0...

CVE-2024-22138

Insertion of Sensitive Information into Log File vulnerability in Seraphinite Solutions Seraphinite Accelerator.This issue affects Seraphinite Accelerator: from n/a through 2.20.47...

CVE-2024-22138 WordPress Seraphinite Accelerator plugin <= 2.20.47 - Sensitive Data Exposure via Log File vulnerability

Insertion of Sensitive Information into Log File vulnerability in Seraphinite Solutions Seraphinite Accelerator.This issue affects Seraphinite Accelerator: from n/a through 2.20.47...

CVE-2024-22138

CVE-2024-22138 affects the WordPress Seraphinite Accelerator plugin (versions up to 2.20.47). Root cause: insertion of sensitive information into log files, enabling potential information exposure. Impact is unauthenticated; vulnerable component is the logging path used by the plugin. Remediation...

CVE-2024-25923

CVE-2024-25923 affects the WordPress plugin Community by PeepSo (versions up to 6.2.7.0). The issue is an insertion of sensitive information into log files, enabling potential unauthenticated information disclosure. Patch guidance from Patchstack indicates the fix is in version 6.2.7.1; upgrading...

CVE-2024-25923 WordPress Community by PeepSo plugin <= 6.2.7.0 - Sensitive Data Exposure via Log File vulnerability

Insertion of Sensitive Information into Log File vulnerability in PeepSo Community by PeepSo.This issue affects Community by PeepSo: from n/a through 6.2.7.0...

PT-2024-23338 · Netentsec · Netentsec Ns-Asg Application Security Gateway

Name of the Vulnerable Software and Affected Versions: Netentsec NS-ASG Application Security Gateway version 6.3 Description: A critical issue has been found in the Netentsec NS-ASG Application Security Gateway, affecting unknown code of the file /protocol/log/listloginfo.php. The manipulation...

PT-2024-4013 · Ivanti · Ivanti Epm +1

Name of the Vulnerable Software and Affected Versions: Ivanti EPM versions 2022 SU5 and prior Description: The issue is related to an SQL Injection vulnerability in the Core server of Ivanti EPM, allowing an authenticated attacker within the same network to execute arbitrary code. Specifically, t...

PT-2024-3987 · Ivanti · Ivanti Epm +1

Name of the Vulnerable Software and Affected Versions: Ivanti EPM versions 2022 SU5 and prior Description: The issue is related to an unspecified SQL Injection vulnerability in the Core server of Ivanti EPM, allowing an authenticated attacker within the same network to execute arbitrary code. Thi...

CVE-2023-44989

CVE-2023-44989 affects the CF7 Google Sheets Connector WordPress plugin. It enables unauthenticated exposure of sensitive data via the plugin’s debug log (google-sheet-connector.php) for versions up to 5.0.5. Patch: upgrade to 5.0.6. The CVSS/impact details in connected sources cite high severity...

CVE-2024-28387

An issue in axonaut v.3.1.23 and before allows a remote attacker to obtain sensitive information via the log.txt component...

CVE-2022-36407

Insertion of Sensitive Information into Log File vulnerability in Hitachi Virtual Storage Platform, Hitachi Virtual Storage Platform VP9500, Hitachi Virtual Storage Platform G1000, G1500, Hitachi Virtual Storage Platform F1500, Hitachi Virtual Storage Platform 5100, 5500, 5100H, 5500H, Hitachi...

CVE-2022-36407

CVE-2022-36407 affects Hitachi Disk Array Systems, where the issue (Insertion of Sensitive Information into Log File) allows local users to gain sensitive information via log files. Concrete details are available in the connected sources: affected families include Hitachi Virtual Storage Platform...

Hitachi Virtual Storage Platform 安全漏洞

Hitachi Virtual Storage Platform is a series of computer data storage systems for data centers from Hitachi, Japan. A security vulnerability exists in Hitachi Virtual Storage Platform that stems from the insertion of sensitive information into a log file, resulting in a sensitive information...

PT-2024-2503 · Hitachi · Hitachi Virtual Storage Platform G400 +39

Name of the Vulnerable Software and Affected Versions: Hitachi Virtual Storage Platform versions prior to DKCMAIN Ver. 70-06-74-00/00, SVP Ver. 70-06-58/00 Hitachi Virtual Storage Platform VP9500 versions prior to DKCMAIN Ver. 70-06-74-00/00, SVP Ver. 70-06-58/00 Hitachi Virtual Storage Platform...

CVE-2024-24272

An issue in iTop DualSafe Password Manager & Digital Vault before 1.4.24 allows a local attacker to obtain sensitive information via leaked credentials as plaintext in a log file that can be accessed by the local user without knowledge of the master secret...