17 matches found
Palo Alto Networks GlobalProtect app 日志信息泄露漏洞
The Palo Alto Networks GlobalProtect app is a network protection software developed by Palo Alto Networks. The GlobalProtect app for macOS has a vulnerability related to log information leakage. This vulnerability allows local users to obtain the configuration passwords necessary to disable,...
Apache Airflow 日志信息泄露漏洞
Apache Airflow is an open-source platform developed by the Apache Foundation in the United States. It allows for the creation, management, and monitoring of workflows. This platform features scalability and dynamic monitoring capabilities. The Apache Airflow OpenSearch Provider has a vulnerabilit...
n8n-MCP 日志信息泄露漏洞
n8n-MCP is a model context protocol server developed by Romuald Członkowski, an individual developer. Versions of n8n-MCP prior to 2.47.11 contained a vulnerability related to log information leakage. This vulnerability occurred when POST /mcp requests under HTTP transmission mode wrote metadata...
HCL BigFix Service Management 日志信息泄露漏洞
HCL BigFix Service Management is an IT service management and asset management platform developed by the Indian company HCL. HCL BigFix Service Management has a vulnerability related to log information leakage. This vulnerability stems from ineffective access control, which may lead to unauthoriz...
PaperCut Hive 日志信息泄露漏洞
PaperCut Hive is a cloud-based printing management solution developed by the Australian company PaperCut. PaperCut Hive has a vulnerability related to log information leakage. This vulnerability arises from the recording of plaintext management credentials when the deep logging mode is enabled...
HAX 日志信息泄露漏洞
HAX is an open-source microsite managed using HAX+CMS with a PHP backend. Versions prior to HAX25.0.0 contained a vulnerability related to log information leakage. This vulnerability stemmed from the /server-status endpoint being publicly accessible, which could allow unverified users to access...
OpenText IDM Driver and Extensions 日志信息泄露漏洞
OpenText IDM Drivers and Extensions are a set of drivers and components provided by OpenText Corporation in Canada, offering capabilities for identity system integration and feature expansion. OpenText IDM Drivers and Extensions contain a vulnerability related to log information leakage, which...
OneUptime 日志信息泄露漏洞
OneUptime is a comprehensive solution developed by OneUptime OpenSource. It is used to monitor and manage your online services. Versions of OneUptime prior to 10.0.24 contained a vulnerability related to log information leakage. This vulnerability stemmed from the fact that the password reset...
Splunk Cloud Platform和Splunk Enterprise 日志信息泄露漏洞
Splunk Cloud Platform and Splunk Enterprise are both products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Vulnerabilities regarding log...
Backstage 日志信息泄露漏洞
Backstage is an open-source application developed by Backstage. It serves as an open platform for building developer portals. Versions of Backstage prior to 3.1.4 contained a vulnerability related to log information leakage. This vulnerability stemmed from malicious scaffolding templates that cou...
Microsoft Windows Kernel 日志信息泄露漏洞
The Microsoft Windows Kernel is the kernel of the Windows operating system developed by Microsoft Corporation. The Microsoft Windows Kernel has a vulnerability related to log information leakage. Attackers can exploit this vulnerability to obtain sensitive information. The following products and...
B&R Industrial Automation Process Visualization Interface log information leakage vulnerability
B&R Industrial Automation Process Visualization Interface is a process visualization tool developed by B&R Industrial Automation in Austria. Versions of the B&R Industrial Automation Process Visualization Interface prior to version 6.5 contained a vulnerability related to log information leakage...
EUVD-2022-42319
Malicious code in bioql PyPI...
TPCMS 日志信息泄露漏洞
TPCMS is a source of happiness Source of Happiness individual developers of an open source content management system. An access control error vulnerability exists in TPCMS version 3.2. A remote attacker could exploit this vulnerability to obtain sensitive information via the application URL...
Siemens SICAM A8000 CP-8000 日志信息泄露漏洞
The SICAM A8000 is used for automation applications in all areas of remote control and energy supply. An access control error vulnerability exists in the Siemens SICAM A8000, which can be exploited by an attacker to access certain previously created log files...
Brave 日志信息泄露漏洞
Brave is a fast, private and secure web browser from Brave, Inc. Brave Browser Desktop 1.28.62 and earlier versions have a security vulnerability that could be exploited by attackers to obtain "V2 onion domains"...
CloudBees Jenkins Configuration as Code plugin log information leakage vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software release/testing projects and some timed tasks . Configuration as Code Plugin is used in which a Jenki...