CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/06/11 12:0 a.m.•9 views

Cerebrate 信息泄露漏洞

Cerebrate is an open-source platform developed by Cerebrate. It aims to act as an interconnected coordinator for trusted contact information providers and other security tools. Prior to version 1.37 of Cerebrate, there was a vulnerability involving information leakage, which stemmed from exposing...

5.1CVSS5.3AI score0.00242EPSS

CNNVD•added 2026/06/09 12:0 a.m.•9 views

MongoDB Server 日志信息泄露漏洞

MongoDB Server is an open-source NoSQL database developed by MongoDB, a US-based company. This database offers features such as collection-oriented storage, dynamic querying, data replication, and automatic failover. There is a vulnerability in MongoDB Server where log information may be leaked...

6.8CVSS5.2AI score0.00105EPSS

CNNVD•added 2026/06/09 12:0 a.m.•10 views

MongoDB Server 日志信息泄露漏洞

MongoDB Server is an open-source NoSQL database developed by MongoDB, a company based in the United States. This database offers features such as collection-oriented storage, dynamic querying, data replication, and automatic failover. There is a vulnerability in MongoDB Server related to log...

6.8CVSS5.4AI score0.00119EPSS

RedhatCVE•added 2026/06/02 4:1 p.m.•8 views

CVE-2026-45040

RustFS is a distributed object storage system built in Rust. Prior to 1.0.0-beta.2, RustFS suffers from sensitive information leakage in log outputs. When the server is run with RUSTLOG=debug sensitive credentials including SessionToken JWT, SecretAccessKey, and full JWT claims are printed in...

Github Security Blog•added 2026/05/29 10:7 p.m.•17 views

Admidio writes session IDs and auto-login cookie values to application logs

Summary When debug logging is enabled, Session::setCookie logs full cookie values and Session::start logs the current session ID. In a real Admidio deployment this includes both the active session cookie and the persistent auto-login cookie. Anyone with access to the log sink can recover live...

5.8AI score0.00015EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/05/28 8:59 p.m.•31 views

CVE-2026-44883 Portainer: JWT accepted in URL query leaks tokens to logs and referers

Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer's authentication middleware accepts JWT bearer tokens passed...

7.7CVSS0.00261EPSS

Exploits1References1

NVD•added 2026/05/28 7:16 p.m.•11 views

CVE-2026-45040

5.3CVSS0.00152EPSS

EUVD•added 2026/05/28 6:35 p.m.•10 views

EUVD-2026-32997

ATTACKERKB•added 2026/05/28 6:35 p.m.•7 views

CVE-2026-45040

Exploits0References2Affected Software1

CNNVD•added 2026/05/28 12:0 a.m.•9 views

rustfs 日志信息泄露漏洞

RustFS is a high-performance object storage system developed by RustFS. Versions of RustFS prior to 1.0.0-beta.2 contained a vulnerability related to log information leakage. This vulnerability occurred due to the exposure of sensitive credentials in debug log outputs, including SessionToken,...

CNNVD•added 2026/05/26 12:0 a.m.•7 views

IBM Db2 日志信息泄露漏洞

IBM Db2 is a relational database management system developed by IBM. Versions 11.5.0 to 11.5.9 and 12.1.0 to 12.1.4 of IBM Db2 contain a vulnerability related to log information leakage. This vulnerability stems from the storage of potentially sensitive information in log files, which may allow...

5.5CVSS5.8AI score0.00143EPSS

CNNVD•added 2026/05/21 12:0 a.m.•6 views

Netatalk 日志信息泄露漏洞

Netatalk is an open-source software developed by Netatalk. It provides AFP file server functionality for Classic Mac OS and macOS on Unix-like operating systems. Versions 2.1.0 to 4.4.2 of Netatalk contained a vulnerability related to log information leakage. This vulnerability stemmed from...

7.5CVSS5.8AI score0.00245EPSS

CNNVD•added 2026/05/20 12:0 a.m.•8 views

Splunk Cloud Platform和Splunk Enterprise 日志信息泄露漏洞

Splunk Cloud Platform and Splunk Enterprise are both products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Versions of Splunk Enterprise prior t...

7.5CVSS5.8AI score0.00485EPSS

OSV•added 2026/05/19 4:17 p.m.•7 views

GHSA-F9F8-RM49-7JV2 Github Actions issued GITHUB_TOKEN disclosure in GitHub Actions logs

Summary Composer leaks the full contents of tokens configured as GitHub OAuth tokens if they do not match Composer's expected format for such tokens to stderr. GitHub has introduced a new format for GitHub Actions GITHUBTOKEN values. These tokens are validated in the same way by Composer on GitHu...

7.5CVSS5.7AI score0.00079EPSS

Exploits0References3

CNNVD•added 2026/05/14 12:0 a.m.•7 views

Valtimo 日志信息泄露漏洞

Valtimo is an open-source low-code platform for business process automation developed by Valtimo in the Netherlands. Versions 12.4.0 to 12.33.0 and 13.26.0 of Valtimo have a vulnerability related to log information leakage. This vulnerability stems from the LoggingRestClientCustomizer automatical...

7.6CVSS5.8AI score0.002EPSS

CNNVD•added 2026/05/13 12:0 a.m.•7 views

MongoDB Server 日志信息泄露漏洞

5.3CVSS5.8AI score0.00196EPSS

CNNVD•added 2026/05/08 12:0 a.m.•5 views

n8n-MCP 日志信息泄露漏洞

n8n-MCP is a model context protocol server developed by Romuald Członkowski, an individual developer. Versions of n8n-MCP prior to 2.47.13 contained a vulnerability related to log information leakage. This vulnerability occurred because the complete parameters of MCP tool calls and JSON-RPC...

4.3CVSS5.8AI score0.0025EPSS

CNNVD•added 2026/05/07 12:0 a.m.•8 views

VMware Spring Cloud Config 日志信息泄露漏洞

VMware Spring Cloud Config is a configuration management solution for distributed systems developed by VMware, Inc. This product provides server and client support for external configurations in distributed systems. VMware Spring Cloud Config has a vulnerability related to log information leakage...

4.4CVSS5.8AI score0.00168EPSS