Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2024/12/12 8:0 p.m.4 views

quarkus-core: Leak of local configuration properties into Quarkus applications

A vulnerability was found in the quarkus-core component. Quarkus captures local environment variables from the Quarkus namespace during the application's build, therefore, running the resulting application inherits the values captured at build time. Some local environment variables may have been...

7CVSS7.1AI score0.00286EPSS
Exploits0References4
OSV
OSV
added 2024/04/04 3:30 p.m.8 views

GHSA-F8H5-V2VG-46RR quarkus-core leaks local environment variables from Quarkus namespace during application's build

A vulnerability was found in the quarkus-core component. Quarkus captures the local environment variables from the Quarkus namespace during the application's build. Thus, running the resulting application inherits the values captured at build time. However, some local environment variables may ha...

7CVSS7AI score0.00286EPSS
Exploits0References16
Github Security Blog
Github Security Blog
added 2021/07/19 3:21 p.m.109 views

Basic-auth app bundle credential exposure in gatsby-source-wordpress

Impact The gatsby-source-wordpress plugin prior to versions 4.0.8 and 5.9.2 leaks .htaccess HTTP Basic Authentication variables into the app.js bundle during build-time. Users who are not initializing basic authentication credentials in the gatsby-config.js are not affected. Example affected...

7.5CVSS1.4AI score0.01414EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2021/07/15 7:15 p.m.22 views

Authentication flaw

Gatsby is a framework for building websites. The gatsby-source-wordpress plugin prior to versions 4.0.8 and 5.9.2 leaks .htaccess HTTP Basic Authentication variables into the app.js bundle during build-time. Users who are not initializing basic authentication credentials in the gatsby-config.js a...

5CVSS7.7AI score0.01414EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/07/15 12:0 a.m.7 views

PT-2021-19918 · WordPress · Gatsby-Source-Wordpress

Name of the Vulnerable Software and Affected Versions: gatsby-source-wordpress versions prior to 4.0.8 and 5.9.2 Description: The gatsby-source-wordpress plugin leaks .htaccess HTTP Basic Authentication variables into the app.js bundle during build-time. This issue affects users who initialize...

7.5CVSS7.5AI score0.01414EPSS
Exploits1References6
Rows per page
Query Builder