Lucene search
K

1894 matches found

CNNVD
CNNVD
added 2023/07/17 12:0 a.m.4 views

WordPress plugin Royal Elementor Addons 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. An information disclosure vulnerability...

5.3CVSS6.7AI score0.00579EPSS
Exploits0References4
Kitploit
Kitploit
added 2023/07/12 12:30 p.m.38 views

Mantra - A Tool Used To Hunt Down API Key Leaks In JS Files And Pages

The tool in question was created in Go and its main objective is to search for API keys in JavaScript files and HTML pages. It works by checking the source code of web pages and script files for strings that are identical or similar to API keys. These keys are often used for authentication to...

7.1AI score
Exploits0References3
The Hacker News
The Hacker News
added 2023/07/07 6:17 a.m.19 views

JumpCloud Resets API Keys Amid Ongoing Cybersecurity Incident

JumpCloud, a provider of cloud-based identity and access management solutions, has swiftly reacted to an ongoing cybersecurity incident that impacted some of its clients. As part of its damage control efforts, JumpCloud has reset the application programming interface API keys of all customers...

6.7AI score
Exploits0
Prion
Prion
added 2023/07/03 6:15 p.m.16 views

Code injection

tktchurch/website contains the codebase for The King's Temple Church website. In version 0.1.0, a Stripe API key was found in the public code repository of the church's project. This sensitive information was unintentionally committed and subsequently exposed in the codebase. If an unauthorized...

6.4CVSS9AI score0.00483EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/03 5:54 p.m.27 views

CVE-2023-36817 The King's Temple Church website Leaked Stripe API Key in Public Code Repository

tktchurch/website contains the codebase for The King's Temple Church website. In version 0.1.0, a Stripe API key was found in the public code repository of the church's project. This sensitive information was unintentionally committed and subsequently exposed in the codebase. If an unauthorized...

7.5CVSS9.4AI score0.00483EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/03 5:54 p.m.9 views

CVE-2023-36817 The King's Temple Church website Leaked Stripe API Key in Public Code Repository

tktchurch/website contains the codebase for The King's Temple Church website. In version 0.1.0, a Stripe API key was found in the public code repository of the church's project. This sensitive information was unintentionally committed and subsequently exposed in the codebase. If an unauthorized...

7.5CVSS6.6AI score0.00483EPSS
Exploits0References1
OSV
OSV
added 2023/07/03 5:54 p.m.25 views

CVE-2023-36817 The King's Temple Church website Leaked Stripe API Key in Public Code Repository

tktchurch/website contains the codebase for The King's Temple Church website. In version 0.1.0, a Stripe API key was found in the public code repository of the church's project. This sensitive information was unintentionally committed and subsequently exposed in the codebase. If an unauthorized...

7.5CVSS8.8AI score0.00483EPSS
Exploits0References3
NVD
NVD
added 2023/06/30 7:15 a.m.7 views

CVE-2023-28387

"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external service...

5.5CVSS5AI score0.00163EPSS
Exploits0References3
Prion
Prion
added 2023/06/30 7:15 a.m.14 views

Hardcoded credentials

"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external service...

1.7CVSS4.9AI score0.00163EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/30 6:22 a.m.13 views

CVE-2023-28387

"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external service...

6.2AI score0.00163EPSS
Exploits0References3
CVE
CVE
added 2023/06/30 6:22 a.m.37 views

CVE-2023-28387

The CVE-2023-28387 entry concerns the NewsPicks mobile apps for Android (versions 10.4.5 and earlier) and iOS (versions 10.4.2 and earlier) that hard‑code credentials, enabling a local attacker to access app data and potentially obtain an API key for an external service. Affected components are t...

5.5CVSS5AI score0.00163EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/06/30 6:22 a.m.20 views

CVE-2023-28387

"NewsPicks" App for Android versions 10.4.5 and earlier and "NewsPicks" App for iOS versions 10.4.2 and earlier use hard-coded credentials, which may allow a local attacker to analyze data in the app and to obtain API key for an external service...

5.3AI score0.00163EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/06/30 12:0 a.m.7 views

PT-2023-21688 · Unknown · Newspicks App

Name of the Vulnerable Software and Affected Versions: NewsPicks App for Android versions 10.4.5 and earlier NewsPicks App for iOS versions 10.4.2 and earlier Description: The issue is related to hard-coded credentials in the NewsPicks App, which may allow a local attacker to analyze data in the...

5.5CVSS5AI score0.00163EPSS
Exploits0References6
OSV
OSV
added 2023/06/27 8:15 p.m.1 views

CVE-2023-30993

IBM Cloud Pak for Security CP4S 1.9.0.0 through 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136...

7.5CVSS5.8AI score0.00615EPSS
Exploits0References2
NVD
NVD
added 2023/06/27 8:15 p.m.19 views

CVE-2023-30993

IBM Cloud Pak for Security CP4S 1.9.0.0 through 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136...

7.5CVSS6.8AI score0.00615EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/27 7:25 p.m.26 views

CVE-2023-30993 IBM Cloud Pak for Security information disclosure

IBM Cloud Pak for Security CP4S 1.9.0.0 through 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136...

6.8CVSS7.3AI score0.00615EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/06/27 7:25 p.m.9 views

CVE-2023-30993 IBM Cloud Pak for Security information disclosure

IBM Cloud Pak for Security CP4S 1.9.0.0 through 1.9.2.0 could allow an attacker with a valid API key for one tenant to access data from another tenant's account. IBM X-Force ID: 254136...

6.8CVSS6.4AI score0.00615EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/27 12:0 a.m.4 views

PT-2023-23102 · Ibm · Ibm Cloud Pak For Security

Name of the Vulnerable Software and Affected Versions: IBM Cloud Pak for Security CP4S versions 1.9.0.0 through 1.9.2.0 Description: The issue allows an attacker with a valid API key for one tenant to access data from another tenant's account. Recommendations: For versions 1.9.0.0 through 1.9.2.0...

7.5CVSS7.5AI score0.00615EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/16 12:0 a.m.36 views

Fedora 37 : chromium (2023-f4954af225)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-f4954af225 advisory. update to 114.0.5735.106. Fixes the following security issue: CVE-2023-3709 Tenable has extracted the preceding description block directly from the...

8.8CVSS7.8AI score0.32724EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2023/06/12 12:0 a.m.27 views

Fedora 38 : chromium (2023-6fe7ff3452)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-6fe7ff3452 advisory. update to 114.0.5735.106. Fixes the following security issue: CVE-2023-3709 Tenable has extracted the preceding description block directly from the...

8.8CVSS7.8AI score0.32724EPSS
Exploits2References3
Rows per page
Query Builder