CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/05/27 2:17 p.m.•6 views

CVE-2026-8405

IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" LTR can expose sensitive credentials in debug mode...

6.5CVSS0.00032EPSS

EUVD•added 2026/05/27 1:20 p.m.•6 views

EUVD-2026-32501

IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" LTR can expose sensitive credentials in debug mode...

ATTACKERKB•added 2026/05/27 1:20 p.m.•4 views

CVE-2026-8405

IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" LTR can expose sensitive credentials in debug mode...

Exploits0References2Affected Software1

CVE•added 2026/05/27 1:20 p.m.•6 views

CVE-2026-8405

The vulnerability CVE-2026-8405 affects IBM Guardium Data Protection (Guardium Data Protection add-on) with the Long Term Retention (LTR) feature, where sensitive credentials can be exposed in debug mode. Affected versions are 12.2.1 and 12.2.2; the issue is described as CWE-200 (Exposure of Sens...

Exploits0References1Affected Software1

Vulnrichment•added 2026/05/27 1:20 p.m.•5 views

CVE-2026-8405 IBM Guardium Data Protection is affected by Exposure of Sensitive Information vulnerability

IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" LTR can expose sensitive credentials in debug mode...

Positive Technologies•added 2026/05/27 12:0 a.m.•3 views

PT-2026-43990

IBM Guardium Data Protection 12.2.1, and 12.2.2 's add-on feature of Guardium Data Protection named "Long Term Retention" LTR can expose sensitive credentials in debug mode...

CNNVD•added 2026/05/27 12:0 a.m.•6 views

Exploits0References2

IBM Guardium Data Protection 信息泄露漏洞

IBM Guardium Data Protection is a comprehensive data security platform developed by the American company International Business Machines IBM. Versions 12.2.1 and 12.2.2 of IBM Guardium Data Protection contain information leakage vulnerabilities. These vulnerabilities stem from the Long Term...

Snyk•added 2026/05/26 6:40 p.m.•2 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the debugMode process. An attacker can obtain sensitive server-side source code and file contents by provoking a runtime error in a served script. Remediation Upgrade github.com/xyproto/algernon/engine to versio...

8.7CVSS5.9AI score0.00042EPSS

Exploits0References2

NVD•added 2026/05/26 5:16 p.m.•6 views

CVE-2026-45728

Algernon is a small self-contained pure-Go web server. Prior to 1.17.7, when Algernon is invoked with a single file path instead of a directory, singleFileMode is set to true and debugMode is forcibly enabled. debugMode activates the PrettyError renderer, which on any Lua or template error respon...

7.5CVSS0.00042EPSS

CVE•added 2026/05/26 4:38 p.m.•7 views

CVE-2026-45728

CVE-2026-45728 (Algernon) exposes server-side source on error when running in single-file mode. Prior to 1.17.7, invoking Algernon with a file path (not a dir) forces singleFileMode, which enables debugMode and renders PrettyError pages that reveal the absolute path and full contents of the error...

Cvelist•added 2026/05/26 4:38 p.m.•27 views

CVE-2026-45728 Algernon: Single-file mode unconditionally enables debug mode

7.5CVSS0.00042EPSS

Vulnrichment•added 2026/05/26 4:38 p.m.•6 views

CVE-2026-45728 Algernon: Single-file mode unconditionally enables debug mode

EUVD•added 2026/05/26 4:38 p.m.•6 views

EUVD-2026-31868

ATTACKERKB•added 2026/05/26 4:38 p.m.•3 views

CVE-2026-45728

Exploits0References2Affected Software1

IBM Security Bulletins•added 2026/05/21 2:44 p.m.•3 views

Security Bulletin: IBM Guardium Data Protection is affected by Exposure of Sensitive Information vulnerability (CVE-2026-8405)

Summary IBM Guardium Data Protection has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2026-8405 DESCRIPTION: IBM Guardium Data Protection's add-on feature of Guardium Data Protection named "Long Term Retention" LTR can expose sensitive credentials in debug mode...

Exploits0Affected Software1

ATTACKERKB•added 2026/05/20 7:38 p.m.•2 views

CVE-2026-9133

Active debug code exists in the ARN resolver of amazon-mq rabbitmq-aws before version 0.2.1. A debug ARN scheme arn:aws-debug:file accepted by the PUT /api/aws/arn/validate validation endpoint might allow remote authenticated users to perform arbitrary file reads on any file accessible to the...

8.3CVSS6AI score0.00027EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2026/05/19 2:35 p.m.•8 views

Algernon: Single-file mode unconditionally enables debug mode

Summary When Algernon is invoked with a single file path instead of a directory — the documented "quick demo" workflow algernon foo.lua, algernon page.po2, algernon index.html, algernon mywebsite.alg — singleFileMode is set to true and debugMode is forcibly enabled with no opt-out: go //...