Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/05/07 8:37 a.m.12 views

CVE-2024-43384

The CVE-2024-43384 entry concerns Phoenix Contact MGUARD products. Affected component: the devices’ handling/storage/transfer of sensitive data. Root cause: improper removal of sensitive information before storage or transfer, enabling exposure of the root password. Impact: a low-privileged remot...

8CVSS5.8AI score0.00034EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVEadded 2026/04/14 2:0 p.m.1 views

Windows Recovery Environment Security Feature Bypass Vulnerability

Improper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack...

4.6CVSS6.3AI score0.00171EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2026/04/07 9:44 p.m.2 views

CVE-2026-39937 Global vanishing does not completely remove user email

Improper removal of sensitive information before storage or transfer vulnerability in The Wikimedia Foundation Mediawiki - CentralAuth Extension allows Resource Leak Exposure. The issue has been remediated on the master branch, and in the release branches for MediaWiki versions 1.43, 1.44, and 1....

8.8CVSS5.8AI score0.0006EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/04/07 12:0 a.m.3 views

MediaWiki - CentralAuth Extension 安全漏洞

MediaWiki - CentralAuth Extension is an authentication plugin developed under open source by MediaWiki. The MediaWiki - CentralAuth Extension has a security vulnerability; this vulnerability arises from the improper removal of sensitive information during storage or transmission, which may lead t...

8.8CVSS5.8AI score0.0006EPSS
Exploits0References2
Snyk
Snykadded 2026/03/29 3:13 p.m.1 views

Improper Removal of Sensitive Information Before Storage or Transfer

Overview Affected versions of this package are vulnerable to Improper Removal of Sensitive Information Before Storage or Transfer via /ui/api/query/«queryid» and /v1/query/«queryid» endpoints. An attacker can obtain sensitive credentials by accessing the serialized query JSON after performing wri...

7.7CVSS5.9AI score0.0002EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/11/13 12:0 a.m.2 views

Zoom Clients 安全漏洞

Zoom Clients is a video conferencing application from Zoom USA. A security vulnerability exists in Zoom Clients versions prior to 6.5.10, which stems from improper removal of sensitive information and could lead to information disclosure...

7.5CVSS6.1AI score0.00106EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-23482

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00293EPSS
Exploits0References1
OSV
OSVadded 2022/05/20 12:0 a.m.0 views

GHSA-VGJ7-895J-GPR6 Improper Removal of Sensitive Information Before Storage or Transfer in Strapi

An authenticated user with access to the Strapi admin panel can view private and sensitive data, such as email and password reset tokens, for API users if content types accessible to the authenticated user contain relationships to API users from:users-permissions. There are many scenarios in whic...

7.5CVSS7AI score0.00391EPSS
Exploits0References3
Rows per page
Query Builder