4558 matches found
SAMSUNG多款产品 安全漏洞
SAMSUNG Exynos 980 and others are products of the South Korean company Samsung SAMSUNG.SAMSUNG Exynos 980 is a first 5G integrated Soc product and the world's first A77 architecture processor.SAMSUNG Exynos 1280 is a processor for mobile devices.SAMSUNG Exynos SAMSUNG Exynos 850 is a mobile...
CVE-2025-48025
The CVE-2025-48025 entry concerns Samsung Mobile/Wearable Processors (Exynos 980, 850, 1280, 1330, 1380, 1480, 1580, and W920/W930/W1000). The vulnerability is described as improper access control related to a log file. Connected sources (Red Hat, EUVD, NVD, CVE lists) validate the affected famil...
CVE-2025-48025
In Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000, there is an improper access control vulnerability related to a log file...
Schneider Electric EcoStruxure Panel Server Insertion of Sensitive Information into Log File (CVE-2025-2002)
There is an insertion of sensitive information into log files vulnerability that could cause the disclosure of FTP server credentials when the FTP server is deployed, and the device is placed in debug mode by an administrative user and the debug files are exported from the device. This plugin onl...
CVE-2025-46752
A insertion of sensitive information into log file in Fortinet FortiDLP 12.0.0 through 12.0.5, 11.5.1, 11.4.6, 11.4.5 allows attacker to information disclosure via re-using the enrollment code...
CVE-2025-46752
Fortinet FortiDLP suffers a log-information disclosure vulnerability. The issue affects FortiDLP versions 12.0.0–12.0.5 and 11.5.1, 11.4.6, 11.4.5, caused by insertion of sensitive information into a log file when re-using the enrollment code. Impact is information disclosure; exploitation detail...
CVE-2025-46752
A insertion of sensitive information into log file in Fortinet FortiDLP 12.0.0 through 12.0.5, 11.5.1, 11.4.6, 11.4.5 allows attacker to information disclosure via re-using the enrollment code...
CVE-2025-59258
Insertion of sensitive information into log file in Active Directory Federation Services allows an unauthorized attacker to disclose information locally...
CVE-2025-10486 Content Writer <= 3.6.8 - Unauthenticated Information Exposure via Log File
The Content Writer plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.8 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the exposed log files...
CVE-2025-10486 Content Writer <= 3.6.8 - Unauthenticated Information Exposure via Log File
The Content Writer plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.6.8 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the exposed log files...
EUVD-2025-34296
Insertion of sensitive information into log file in Windows ETL Channel allows an authorized attacker to disclose information locally...
EUVD-2025-34294
Insertion of sensitive information into log file in Windows StateRepository API allows an authorized attacker to disclose information locally...
CVE-2025-59258
Insertion of sensitive information into log file in Active Directory Federation Services allows an unauthorized attacker to disclose information locally...
CVE-2025-59197
Insertion of sensitive information into log file in Windows ETL Channel allows an authorized attacker to disclose information locally...
CVE-2025-59197
Insertion of sensitive information into log file in Windows ETL Channel allows an authorized attacker to disclose information locally...
CVE-2025-31514
A insertion of sensitive information into log file vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all versions, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.13, FortiProxy 7.2 all...
CVE-2025-31514
A insertion of sensitive information into log file vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4 all versions, FortiOS 7.2 all versions, FortiOS 7.0 all versions, FortiOS 6.4 all versions, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.13, FortiProxy 7.2 all...
Windows State Repository API Server File Information Disclosure Vulnerability
Insertion of sensitive information into log file in Windows StateRepository API allows an authorized attacker to disclose information locally...
CVE-2025-11654
A vulnerability was identified in yousaf530 Inferno Online Clothing Store up to 827dd42bfbe380e8de76fdc67958c24cf1246208. The affected element is an unknown function of the file /log.php. Such manipulation of the argument cemail/password leads to sql injection. It is possible to launch the attack...
CVE-2025-11654 yousaf530 Inferno Online Clothing Store log.php sql injection
A vulnerability was identified in yousaf530 Inferno Online Clothing Store up to 827dd42bfbe380e8de76fdc67958c24cf1246208. The affected element is an unknown function of the file /log.php. Such manipulation of the argument cemail/password leads to sql injection. It is possible to launch the attack...