Lucene search
+L

215 matches found

attackerkb
attackerkb
added 2026/04/08 8:30 a.m.3 views

CVE-2026-39536

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WP Chill RSVP and Event Management rsvp allows Retrieve Embedded Sensitive Data.This issue affects RSVP and Event Management: from n/a through = 2.7.16...

5.9AI score0.0024EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/04/08 12:0 a.m.11 views

PT-2026-31146

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WP Chill RSVP and Event Management rsvp allows Retrieve Embedded Sensitive Data.This issue affects RSVP and Event Management: from n/a through = 2.7.16...

5.9AI score0.0024EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/04/08 12:0 a.m.8 views

PT-2026-31161

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in magepeopleteam Bus Ticket Booking with Seat Reservation bus-ticket-booking-with-seat-reservation allows Retrieve Embedded Sensitive Data.This issue affects Bus Ticket Booking with Seat Reservation: from n/...

5.9AI score0.00189EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/04/08 12:0 a.m.4 views

PT-2026-31160

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Themefic Instantio instantio allows Retrieve Embedded Sensitive Data.This issue affects Instantio: from n/a through = 3.3.30...

5.9AI score0.0024EPSS
Exploits0References3
nessus
nessus
added 2026/03/23 12:0 a.m.7 views

Siemens APE1808 Exposure of Sensitive System Information to an Unauthorized Control Sphere (CVE-2025-4614)

An information disclosure vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to view session tokens of users authenticated to the firewall web UI. This may allow impersonation of users whose session tokens are leaked. This plugin only works with Tenable.ot...

4.8CVSS5.8AI score0.00225EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/03/13 12:0 a.m.10 views

PT-2026-25251

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in xtemos WoodMart woodmart allows Retrieve Embedded Sensitive Data.This issue affects WoodMart: from n/a through = 8.3.9...

5.8AI score0.0024EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2026/03/02 4:53 p.m.5 views

CVE-2025-47378 Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS5.9AI score0.0007EPSS
Exploits0References1
cve
cve
added 2026/03/02 4:53 p.m.26 views

CVE-2025-47378

CVE-2025-47378 is described as a cryptographic issue where a shared VM reference allows HLOS to boot the loader and access the certificate chain. Connected sources corroborate a cryptographic exposure affecting HLOS/boot chain components and reference related advisories from Red Hat and NCSC; how...

7.1CVSS5.9AI score0.0007EPSS
Exploits0References1Affected Software1
redhatcve
redhatcve
added 2026/02/24 11:2 p.m.9 views

CVE-2026-3075

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrieve Embedded Sensitive Data.This issue affects Simple Ajax Chat: from n/a through = 20251121...

5.3CVSS5.4AI score0.00304EPSS
Exploits0References1
nvd
nvd
added 2026/02/23 9:19 p.m.9 views

CVE-2026-3075

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrieve Embedded Sensitive Data.This issue affects Simple Ajax Chat: from n/a through = 20251121...

5.3CVSS0.00304EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/02/23 12:0 a.m.10 views

PT-2026-21561

Name of the Vulnerable Software and Affected Versions Jeff Starr Simple Ajax Chat versions prior to 20251122 Description A flaw exists in Jeff Starr Simple Ajax Chat that allows retrieval of embedded sensitive data, potentially exposing sensitive system information to an unauthorized control...

5.2AI score0.00304EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/02/20 1:27 p.m.5 views

CVE-2026-25325

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in rtCamp rtMedia for WordPress, BuddyPress and bbPress buddypress-media allows Retrieve Embedded Sensitive Data.This issue affects rtMedia for WordPress, BuddyPress and bbPress: from n/a through = 4.7.8...

5.3CVSS5.5AI score0.00316EPSS
Exploits0References1
nvd
nvd
added 2026/02/19 9:16 a.m.5 views

CVE-2026-25389

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through = 4.2.8.3...

5.3CVSS0.0024EPSS
Exploits0References1
snyk
snyk
added 2026/02/18 3:31 p.m.8 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview org.jenkins-ci.main:jenkins-core is an open source automation server. Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere via the Run Parameter values. An attacker can access information about the existence of job...

5.3CVSS5.7AI score0.00333EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/02/12 1:42 p.m.6 views

CVE-2025-9986

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vadi Corporate Information Systems Ltd. Co. DIGIKENT allows Excavation.This issue affects DIGIKENT: through 13092025...

8.2CVSS5.5AI score0.00217EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/02/11 8:34 a.m.2 views

CVE-2025-9986

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vadi Corporate Information Systems Ltd. Co. DIGIKENT allows Excavation. This issue affects DIGIKENT: through 13092025...

8.2CVSS5.5AI score0.00217EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/02/11 12:0 a.m.11 views

PT-2026-7493

Name of the Vulnerable Software and Affected Versions DIGIKENT versions through 13092025 Description A flaw exists in DIGIKENT that results in the exposure of sensitive system information to an unauthorized control sphere, potentially allowing for data excavation. The number of potentially affect...

8.2CVSS5.4AI score0.00217EPSS
Exploits0References6
snyk
snyk
added 2026/02/05 3:20 a.m.3 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere via the debug functions, due to unprotected /config partition. An attacker can gain unauthorized access to debugging functions without triggering the measured bo...

8.8CVSS7.9AI score0.00159EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/01/24 3:18 p.m.14 views

CVE-2026-24536

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in webpushr Webpushr webpushr-web-push-notifications allows Retrieve Embedded Sensitive Data.This issue affects Webpushr: from n/a through = 4.38.0...

5.3CVSS5.4AI score0.00305EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/24 3:18 p.m.7 views

CVE-2026-24523

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Marcus aka @msykes WP FullCalendar wp-fullcalendar allows Retrieve Embedded Sensitive Data.This issue affects WP FullCalendar: from n/a through = 1.6...

5.3CVSS5.4AI score0.00296EPSS
Exploits0References1
Rows per page
Query Builder