3 matches found
CVE-2023-27587
creationtimestamp| type| source ---|---|--- 2023-03-16 08:24:44+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/3946 2023-03-17 11:01:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/7945 2025-01-31 00:00:00+00:00| exploited| The Shadowserver...
CVE-2023-27587
ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...
CVE-2023-27587
ReadtoMyShoe (RTMS) is affected by CVE-2023-27587. When an article-adding error occurs, the TTS request URL may leak the Google Cloud API key in the full URL. A PoC demonstrates the leaked key in the error output; the issue is tied to pre-8533b01 behavior. The advisory notes that this has been pa...