📄 WordPress WWLC 2.0.3.1 File Upload Metasploit Scanner

This Metasploit auxiliary module scans WordPress websites for an arbitrary file upload vulnerability in the WWLC plugin version 2.0.3.1. The module attempts to upload a crafted PHP file through the vulnerable AJAX endpoint admin-ajax.php using the wwlcfileuploadhandler action. If the upload is...

CVE-2019-20852

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information e.g., server addresses or message content...

EUVD-2020-4260

Malware in sbrugna...

EUVD-2019-11389

Malware in sbrugna...

EUVD-2025-30269

Malicious code in bioql PyPI...

EUVD-2025-12608

Malicious code in bioql PyPI...

CVE-2025-34188

Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 1.0.735 and Application prior to 20.0.1330 macOS/Linux client deployments contain a vulnerability in the local logging mechanism. Authentication session tokens, including PHPSESSID, XSRF-TOKEN, and laravelsession, are...

Vasion Print Virtual Appliance Host和Vasion Print Application 安全漏洞

Vasion Print Virtual Appliance Host and Vasion Print Application are both products of Vasion Corporation of the U.S.A. Vasion Print Virtual Appliance Host is a print management software.Vasion Print Application is a printer management application. A security vulnerability exists in Vasion Print...

CVE-2025-46329

libsnowflakeclient is the Snowflake Connector for C/C++. Versions starting from 0.5.0 to before 2.2.0, are vulnerable to local logging of sensitive information. When the logging level was set to DEBUG, the Connector would log locally the client-side encryption master key of the target stage durin...

Application firewall Logs are not logged locally in NetScaler

NetScaler appfw logs are being forwarded to the syslog server as expected. However, the logs are not being logged or displayed in the local /var/log/ns.log. Config: add audit syslogPolicy sysadv1 true sys1bind audit syslogGlobal -policyName sysadv1 -priority 100 -globalBindType APPFWGLOBA Before...

CVE-2025-46329

libsnowflakeclient is the Snowflake Connector for C/C++. Versions starting from 0.5.0 to before 2.2.0, are vulnerable to local logging of sensitive information. When the logging level was set to DEBUG, the Connector would log locally the client-side encryption master key of the target stage durin...

CVE-2025-46329 Snowflake Connector for C/C++ inserts client-side encryption key in DEBUG logs

libsnowflakeclient is the Snowflake Connector for C/C++. Versions starting from 0.5.0 to before 2.2.0, are vulnerable to local logging of sensitive information. When the logging level was set to DEBUG, the Connector would log locally the client-side encryption master key of the target stage durin...

CVE-2025-46329

The CVE-2025-46329 issue affects libsnowflakeclient (Snowflake Connector for C/C++). Versions 0.5.0 through before 2.2.0 log locally the client-side encryption master key of the target stage when the logging level is DEBUG during GET/PUT operations. This could expose sensitive information in loca...

CVE-2022-48435

In JetBrains PhpStorm before 2023.1 source code could be logged in the local idea.log file...

CVE-2020-11923

An issue was discovered in WiZ Colors A60 1.14.0. API credentials are locally logged...

CVE-2020-11923

Product/Version affected: WiZ Colors A60 1.14.0. Vulnerability: API credentials are logged locally, which can expose sensitive information. Root cause (as stated): Credentials end up in local logs. Impact (as stated): Potential exposure of API credentials due to local logging (no details on explo...

CVE-2019-20852

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information e.g., server addresses or message content...

CVE-2019-20852

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information e.g., server addresses or message content...

Information disclosure

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information e.g., server addresses or message content...

CVE-2019-20852

Mattermost Mobile Apps prior to version 1.26.0 contain a local-logging issue where sensitive information (e.g., server addresses or message content) is not blocked from being written to device logs. The Red Hat/CVE entries confirm this description. Impact is stated as exposure of sensitive data t...