EUVD-2024-39432

Malicious code in bioql PyPI...

CVE-2024-38308

Advantech ADAM 5550's web application includes a "logs" page where all the HTTP requests received are displayed to the user. The device doesn't correctly neutralize malicious code when parsing HTTP requests to generate page output...

CVE-2024-42196

HCL Launch stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

Fedora 13 : boa-0.94.14-0.15.rc21.fc13 (2010-7599)

This update fixes CVE-2009-4496 where HTTP request logs were written without sanitizing non-printable characters. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...

Fedora 12 : boa-0.94.14-0.15.rc21.fc12 (2010-7640)

This update fixes CVE-2009-4496 where HTTP request logs were written without sanitizing non-printable characters. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...

RedHat 6.2 - Piranha Virtual Server Package Plaintext Password

source: https://www.securityfocus.com/bid/1367/info Password changes submitted to Red Hat Piranha via HTTP are insecurely passed as variables in a GET request. Unauthorized users could obtain the password by reading the httpd access log or by sniffing. ---------from...