Lucene search
K

11 matches found

Cvelist
Cvelist
added 2026/01/30 8:31 a.m.30 views

CVE-2025-1395 Sensitive Data Exposure in CoDeriApp's HeyGarson

Generation of Error Message Containing Sensitive Information vulnerability in Codriapp Innovation and Software Technologies Inc. HeyGarson allows Fuzzing for application mapping. This issue affects HeyGarson: through 30012026. NOTE: The vendor was contacted several times to verifying fixing proce...

8.2CVSS0.00299EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.5 views

Aptsys Gemscms POS Platform security vulnerabilities

Aptsys Gemscms POS Platform is a catering management system developed by the Indian company Aptsys. There is a security vulnerability in the Aptsys Gemscms POS Platform. This vulnerability arises from the PHP backend, which triggers detailed error messages when processing specially crafted HTTP...

5.3CVSS5.8AI score0.00492EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/15 1:15 p.m.23 views

CVE-2026-22646

Certain error messages returned by the application expose internal system details that should not be visible to end users, providing attackers with valuable reconnaissance information like file paths, database errors, or software versions that can be used to map the application's internal structu...

4.3CVSS0.00371EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/01/15 1:15 p.m.5 views

CVE-2026-22646

Certain error messages returned by the application expose internal system details that should not be visible to end users, providing attackers with valuable reconnaissance information like file paths, database errors, or software versions that can be used to map the application's internal structu...

4.3CVSS6.5AI score0.00371EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/11 12:0 a.m.9 views

PT-2025-32547 · Wukongopensource · Wukongcrm

Name of the Vulnerable Software and Affected Versions: WuKongOpenSource WukongCRM version 11.0 Description: A vulnerability exists in WuKongOpenSource WukongCRM 11.0, specifically within an unknown part of the /adminFile/upload file of the API Response Handler component. This allows for informati...

5.3CVSS6.9AI score0.00322EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/01/07 12:0 a.m.3 views

IBM Cognos Controller和IBM Controller 安全漏洞

IBM Cognos Controller and IBM Controller are both products of International Business Machines IBM.IBM Cognos Controller is a business intelligence and planning solution. The product features process automation, financial audit control, and the creation and management of financial reports.IBM...

3.7CVSS6.3AI score0.00461EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/02 12:0 a.m.4 views

PT-2024-7108 · Jenkins +1 · Jenkins +1

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.478 and earlier Jenkins LTS versions 2.462.2 and earlier Description: The issue is related to the lack of protection for sensitive data in Jenkins. Specifically, Jenkins does not redact multi-line secret values in error...

5.3CVSS9.4AI score0.0084EPSS
Exploits0References17
SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.1 views

SUSE CVE-2021-36156

An issue was discovered in Grafana Loki through 2.2.1. The header value X-Scope-OrgID is used to construct file paths for rules files, and if crafted to conduct directory traversal such as ae ../../sensitive/path/in/deployment pathname, then Loki will attempt to parse a rules file at that locatio...

5.3CVSS5.3AI score0.01489EPSS
Exploits0References3
CNVD
CNVD
added 2019/08/21 12:0 a.m.2 views

IBM Emptoris Spend Analysis Information Disclosure Vulnerability

IBM Emptoris Spend Analysis is a product within IBM's suite of procurement solutions for consolidating, cleansing and categorizing spend data from decentralized systems. An information disclosure vulnerability exists in IBM Emptoris Spend Analysis versions 10.1.0 through 10.1.3, which arises from...

4.3CVSS6.1AI score0.00994EPSS
Exploits0References1
OSV
OSV
added 2017/12/07 3:29 p.m.0 views

CVE-2017-1342

IBM Insights Foundation for Energy 2.0 could reveal sensitive information in error messages to authenticated users that could e used to conduct further attacks. IBM X-Force ID: 126457...

4.3CVSS5.8AI score0.00739EPSS
Exploits0References2
OSV
OSV
added 2016/05/03 3:59 p.m.3 views

CVE-2016-0893

EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive information by reading error messages...

4.3CVSS5.8AI score0.0163EPSS
Exploits0References3
Rows per page
Query Builder