35 matches found
CVE-2024-20055
In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012...
BIT-LIVEHELPERCHAT-2022-0083
livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information...
ASB-A-318303317
Bulletin has no description...
Information Disclosure
thunderbird is vulnerable to information disclosure. An attacker can gain sensitive information when composing a response to an HTML email with a META refresh tag...
Information Disclosure
podman is vulnerable to information disclosure. The vulnerability exists due to an incorrect version of podman missing for the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056 allowing an attacker to gain access to sensitive information stored in environment variables...
DHIS 2 SQL注入漏洞
DHIS2 is an information system for data capture, management, validation, analysis, and visualization. DHIS2 is vulnerable to SQL injection, which can be exploited by attackers to read, edit, and delete data in the DHIS2 instance database...
GHSA-MC8M-X6HF-CW2G point-cli allows local users to obtain sensitive information by listing the process
lib/commands/setup.rb in the point-cli gem 0.0.1 for Ruby places credentials on the curl command line, which allows local users to obtain sensitive information by listing the process...
GHSA-5MJ6-3CMQ-FH34 showdoc is vulnerable to Generation of Error Message Containing Sensitive Information
showdoc is vulnerable to Generation of Error Message Containing Sensitive Information...
Path Traversal
messagebus is vulnerable to path traversal. The vulnerability exists as it enables diagnostic features by default which allows an attacker to gain sensitive information by traversing through diagnostic routes...
CVE-2020-10941
Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information an RSA private key by measuring cache usage during an import...
Information Disclosure
openstack-keystone is vulnerable to information disclosure. An authorization bypass on the listing projects via an authenticated GET /v3/OS-FEDERATION/projects request allows authenticated users to discover projects they have no authority to access, disclosing the project and attributes informati...
Kimson cms cross site scripting vulnerability
.:::::Kimson Cross Site Scriptting Vulnerbility ::::. Discoverd By : md.r00t special tnx to: HadihadiVirangar Security Team & all virangar members & all hackerz & Hiva Digital Security Team -------------- D0rk: inurl:bbs.track.php?id= ---- xss:...
Wonderware SuiteLink Denial of Service vulnerability
Advisory ID Internal CORE-2008-0129 1. Advisory Information Title: Wonderware SuiteLink Denial of Service vulnerability Advisory ID: CORE-2008-0129 Advisory URL:https://www.coresecurity.com/content/wonderware Date published: 2008-05-05 Date of last update: 2008-05-05 Vendors contacted: Wonderware...
CVE-2020-12555
...
CVE-2023-49590
...