PT-2026-30336

Name of the Vulnerable Software and Affected Versions AVideo versions 26.0 and prior Description The plugin/CloneSite/client.log.php endpoint serves the clone operation log file without authentication. Other endpoints in the CloneSite plugin directory enforce User::isAdmin. The log contains...

Security Bulletin: IBM Robotic Process Automation Client Security Token is written to the Client log file (CVE-2019-4299)

Summary IBM Robotic Process Automation Client Security Token is written to the Client log file Vulnerability Details CVEID: CVE-2019-4299 DESCRIPTION: IBM Robotic Process Automation with Automation Anywhere could allow a local user to obtain highly sensitive information from log files when...