CVE-2026-28511 elabftw has entry title leakage through autocompletion search

eLabFTW is an open source electronic lab notebook. Prior to version 5.4.2, in certain cases, an authenticated user performing a numeric reference/search can return results that include resources the requesting user is not authorized to view. The exposed information is limited only the title...

CVE-2026-28511 elabftw has entry title leakage through autocompletion search

eLabFTW is an open source electronic lab notebook. Prior to version 5.4.2, in certain cases, an authenticated user performing a numeric reference/search can return results that include resources the requesting user is not authorized to view. The exposed information is limited only the title...

CVE-2026-49378

In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion...

CVE-2026-49378

In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion...

EUVD-2026-33386

In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion...

CVE-2026-49378

In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion...

CVE-2026-49378

JetBrains TeamCity prior to version 2026.1 exposes credentials parameters through parameter autocompletion. Affected product: TeamCity server. Root cause: credential values were surfaced in autocompletion UI, enabling potential disclosure. This entry provides no specific exploit details, affected...

CVE-2026-49378

In JetBrains TeamCity before 2026.1 credentials parameters were exposed via parameter autocompletion...

PT-2026-44958

Name of the Vulnerable Software and Affected Versions JetBrains TeamCity versions prior to 2026.1 Description Credentials parameters are exposed through the parameter autocompletion feature. Recommendations Update to version 2026.1...

JetBrains TeamCity 安全漏洞

JetBrains TeamCity is a set of distributed build management and continuous integration tools developed by the Czech company JetBrains. This tool offers features such as continuous unit testing, code quality analysis, and reporting on build issues. Versions of JetBrains TeamCity prior to 2026.1...

HCL AION 安全漏洞

HCL AION is an AI lifecycle management platform developed by the Indian company HCL. HCL AION has a security vulnerability, which stems from the use of autocompletion features for certain input fields. This may lead to sensitive information being stored in the browser, potentially causing...

EUVD-2026-5360

FacturaScripts is open-source enterprise resource planning and accounting software. Prior to version 2025.81, FacturaScripts contains a critical SQL injection vulnerability in the autocomplete functionality that allows authenticated attackers to extract sensitive data from the database including...

CVE-2025-52623

CVE-2025-52623 affects HCL AION v2.0 where the password field does not have autocomplete disabled, enabling potential storage or disclosure of credentials. Connected sources (CNVD-2026-16403, RH/Red Hat, NVD, and PT-2026-5901) corroborate an information disclosure risk from password-field autocom...

EUVD-2011-0093

Malware in sbrugna...

EUVD-2015-0835

Malware in sbrugna...

EUVD-2020-25155

Malware in sbrugna...

EUVD-2019-5823

Malware in sbrugna...

EUVD-2012-0829

Malware in sbrugna...

EUVD-2011-2698

Malware in sbrugna...

EUVD-2017-15006

Malware in sbrugna...