Lucene search
K

33 matches found

CVE
CVE
added 2026/02/19 8:26 a.m.9 views

CVE-2026-25008

The CVE-2026-25008 entry concerns WordPress Ninja Tables (ninja-tables) versions up to and including 5.2.5. The issue is described as an Insertion of Sensitive Information Into Sent Data vulnerability that enables retrieval of embedded sensitive data from Ninja Tables. All connected sources consi...

4.3CVSS5.4AI score0.00215EPSS
Exploits0References1
CVE
CVE
added 2026/01/05 10:39 a.m.14 views

CVE-2025-68033

The CVE-2025-68033 entry concerns Custom Related Posts (Brecht) for WordPress, affecting versions up to 1.8.0. It is an Unauthenticated Information Exposure vulnerability described as Insertion of Sensitive Information Into Sent Data, enabling retrieval of embedded sensitive data. Wordfence detai...

7.5CVSS5.9AI score0.0025EPSS
Exploits0References1
CVE
CVE
added 2025/12/16 8:12 a.m.10 views

CVE-2025-66125

CVE-2025-66125 affects the Ultimate WordPress Auction Plugin (

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-50027

Insertion of Sensitive Information Into Sent Data vulnerability in Metagauss EventPrime eventprime-event-calendar-management allows Retrieve Embedded Sensitive Data.This issue affects EventPrime: from n/a through = 4.2.4.1...

6.9AI score0.00215EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/17 3:47 p.m.3 views

CVE-2025-32594 WordPress Simple WP Events plugin <= 1.8.17 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in WPMinds Simple WP Events allows Retrieve Embedded Sensitive Data. This issue affects Simple WP Events: from n/a through 1.8.17...

7.5CVSS6.9AI score0.00385EPSS
Exploits0References1
OSV
OSV
added 2025/03/06 6:30 a.m.20 views

GHSA-W4RH-FGX7-Q63M ray vulnerable to Insertion of Sensitive Information into Log File

Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Information into Log File where the redis password is being logged in the standard logging. If the redis password is passed as an argument, it will be logged and could potentially leak the password. This is only...

6.4CVSS7.2AI score0.00179EPSS
Exploits0References7
NVD
NVD
added 2025/03/06 5:15 a.m.29 views

CVE-2025-1979

Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Information into Log File where the redis password is being logged in the standard logging. If the redis password is passed as an argument, it will be logged and could potentially leak the password. This is only...

6.4CVSS0.00179EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/01/22 2:29 p.m.6 views

CVE-2025-23774 WordPress WPDB to Sql plugin <= 1.2 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Niket Joshi WPDB to Sql wpdb-to-sql allows Retrieve Embedded Sensitive Data.This issue affects WPDB to Sql: from n/a through = 1.2...

7.5CVSS7.2AI score0.00444EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/17 5:24 p.m.34 views

CVE-2024-49235 WordPress Contact Forms, Live Support, CRM, Video Messages plugin <= 1.10.2 - Sensitive Data Exposure vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in videowhisper Contact Forms, Live Support, CRM, Video Messages live-support-tickets allows Retrieve Embedded Sensitive Data.This issue affects Contact Forms, Live Support, CRM, Video Messages: from n/a through = 1.10.2...

7.5CVSS0.0044EPSS
Exploits0References1
CVE
CVE
added 2024/09/27 11:55 a.m.51 views

CVE-2024-8609

ValeApp (Oceanic Software) prior to version 2.0.0 has a vulnerability that allows insertion of sensitive information into log files, which can enable a query system for information. Impact and exact exploit details are not fully provided in the sources, but PT-2024-39130 notes that versions befor...

8.8CVSS5.8AI score0.00462EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/18 1:3 p.m.11 views

CVE-2024-8890 Insertion of Sensitive Information Into Sent Data vulnerability on CIRCUTOR Q-SMT

An attacker with access to the network where the CIRCUTOR Q-SMT is located in its firmware version 1.0.4, could obtain legitimate credentials or steal sessions due to the fact that the device only implements the HTTP protocol. This fact prevents a secure communication channel from being establish...

8CVSS6.9AI score0.00391EPSS
Exploits0References1
CVE
CVE
added 2024/09/10 9:36 a.m.49 views

CVE-2024-43781

CVE-2024-43781 concerns SINUMERIK systems where, when Create MyConfig (CMC) is used, an Insertion of Sensitive Information into Log File vulnerability can allow a local authenticated user with low privileges to read sensitive data and bypass access restrictions. Affected products include SINUMERI...

6.8CVSS6.2AI score0.00155EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/08 11:34 p.m.17 views

CVE-2024-37283 Elastic Agent Insertion of Sensitive Information into Log File

An issue was discovered whereby Elastic Agent will leak secrets from the agent policy elastic-agent.yml only when the log level is configured to debug. By default the log level is set to info, where no leak occurs...

6.5CVSS7AI score0.00563EPSS
Exploits0References1
VMware
VMware
added 2024/06/27 12:0 a.m.20 views

VMSA-2024-0015: VMware Cloud Director Object Storage Extension addresses an Insertion of Sensitive Information vulnerability (CVE-2024-22276)

Advisory ID: | VMSA-2024-0015 ---|--- Advisory Severity: | Moderate CVSSv3 Range: | 5.3 Synopsis: | VMware Cloud Director Object Storage Extension addresses an Insertion of Sensitive Information vulnerability CVE-2024-22276 Issue Date: | 2024-06-27 Updated On: | 2024-06-27 Initial Advisory CVEs |...

5.3CVSS6.3AI score0.00369EPSS
Exploits0References13Affected Software1
CVE
CVE
added 2024/06/09 12:44 p.m.65 views

CVE-2024-32811

CVE-2024-32811 affects the WordPress plugin USPS Shipping for WooCommerce – Live Rates by Octolize. It exposes sensitive information via log files when logging data (Insertion of Sensitive Information into Log File). Affected versions are from n/a through 1.9.4. CVSS v3.1 base score 5.3 (Network,...

5.3CVSS5.3AI score0.00365EPSS
Exploits0References1
OSV
OSV
added 2024/05/24 7:18 a.m.16 views

BIT-GHOST-2024-34559

Insertion of Sensitive Information into Log File vulnerability in Ghost Foundation Ghost.This issue affects Ghost: from n/a through 1.4.0...

7.5CVSS7.5AI score0.00721EPSS
Exploits0References1
NVD
NVD
added 2024/05/02 11:15 a.m.22 views

CVE-2024-33922

Insertion of Sensitive Information into Log File vulnerability in Jordy Meow WP Media Cleaner.This issue affects WP Media Cleaner: from n/a through 6.7.2...

5.3CVSS5.8AI score0.00447EPSS
Exploits0References1
NVD
NVD
added 2024/04/24 8:15 a.m.12 views

CVE-2024-32953

Insertion of Sensitive Information into Log File vulnerability in Newsletters.This issue affects Newsletters: from n/a through 4.9.5...

7.5CVSS7.5AI score0.0068EPSS
Exploits0References1
CVE
CVE
added 2024/04/24 7:36 a.m.60 views

CVE-2024-32953

CVE-2024-32953 affects the Newsletters WordPress plugin (Newsletters Lite) up to version 4.9.5. The issue is described as an insertion of sensitive information into log files, leading to potential information exposure via logs. The connected documents confirm the affected software and the log-bas...

7.5CVSS5.2AI score0.0068EPSS
Exploits0References1
NVD
NVD
added 2024/04/23 6:15 a.m.15 views

CVE-2023-6833

Insertion of Sensitive Information into Log File vulnerability in Hitachi Ops Center Administrator allows local users to gain sensitive information.This issue affects Hitachi Ops Center Administrator: before 11.0.1...

4.4CVSS4.8AI score0.00166EPSS
Exploits0References1
Rows per page
Query Builder