3 matches found
CVE-2026-15737
CVE-2026-15737 affects the AWS Bedrock AgentCore Python SDK. Unintended logging of sensitive user content occurs in the OpenTelemetry instrumentation for SDK versions 1.4.8 and 1.5.0, where raw user prompts and complete agent responses were written into OpenTelemetry span attributes on every invo...
PT-2022-16832 · Shescape · Shescape
Name of the Vulnerable Software and Affected Versions: shescape versions 1.4.0 through 1.5.1 Description: The issue allows for exposure of the home directory on Unix systems when using Bash with the escape or escapeAll functions from the shescape API with the interpolation option set to true. Oth...
PT-2023-16447 · Phpipam +1 · Phpipam +1
Name of the Vulnerable Software and Affected Versions: phpipam/phpipam versions prior to 1.5.1 Description: The issue is related to Cross-site Scripting XSS - Reflected. This means an attacker can inject malicious scripts into a website, which are then executed by the user's browser. No informati...