Lucene search
K

29 matches found

cvelist
cvelist
added 2017/06/16 9:0 p.m.29 views

CVE-2016-10362

Prior to Logstash version 5.0.1, Elasticsearch Output plugin when updating connections after sniffing, would log to file HTTP basic auth credentials...

6.4AI score0.01081EPSS
Exploits0References2
rubygems
rubygems
added 2017/06/16 12:0 a.m.22 views

Logstash Logs Sensitive Information

Logstash prior to version 2.3.4, Elasticsearch Output plugin would log to file HTTP authorization headers which could contain sensitive information...

7.5CVSS6.8AI score0.01765EPSS
Exploits0References1Affected Software1
openvas
openvas
added 2016/06/28 12:0 a.m.39 views

Elastic Logstash 'CVE-2015-4152' Directory Traversal Vulnerability - Linux

Elastic Logstash is prone to a directory traversal vulnerability. This VT has been deprecated and merged into the VT VT SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.4CVSS6.7AI score0.0303EPSS
Exploits1References3
rubygems
rubygems
added 2016/06/16 12:0 a.m.47 views

Logstash Logs Sensitive Information

Prior to Logstash version 5.0.1, Elasticsearch Output plugin when updating connections after sniffing, would log to file HTTP basic auth credentials...

6.5CVSS6.9AI score0.01081EPSS
Exploits0References1Affected Software1
cnvd
cnvd
added 2015/06/17 12:0 a.m.7 views

Elasticsearch Logstash File Output Plugin Directory Traversal Vulnerability

Elasticsearch Logstash is a set of log analysis and monitoring tools. The tool provides features such as search, processing and management of logs or events. A directory traversal vulnerability in the file output plugin for Elasticsearch Logstash allows remote attackers to write arbitrary files t...

6.4CVSS7.1AI score0.0303EPSS
Exploits1References1
cvelist
cvelist
added 2015/06/15 3:0 p.m.31 views

CVE-2015-4152

Directory traversal vulnerability in the file output plugin in Elasticsearch Logstash before 1.4.3 allows remote attackers to write to arbitrary files via vectors related to dynamic field references in the path option...

6.5AI score0.0303EPSS
Exploits1References4
securityvulns
securityvulns
added 2015/06/14 12:0 a.m.65 views

Logstash vulnerability CVE-2015-4152

Summary: Logstash versions 1.4.2 and prior are vulnerable to a directory traversal attack that allows an attacker to over-write files on the server running Logstash. This vulnerability is not present in the initial installation of Logstash. The vulnerability is exposed when the file output plugin...

6.4CVSS2.8AI score0.0303EPSS
Exploits1
zdt
zdt
added 2015/06/10 12:0 a.m.48 views

Logstash 1.4.2 Directory Traversal Vulnerability

Logstash versions 1.4.2 and prior are vulnerable to a directory traversal attack that allows an attacker to overwrite files on the server running Logstash. Summary: Logstash versions 1.4.2 and prior are vulnerable to a directory traversal attack that allows an attacker to over-write files on the...

6.4CVSS6.4AI score0.0303EPSS
Exploits1
w3af
w3af
added 2013/06/10 11:2 p.m.14 views

html_file

This plugin writes the framework messages to an HTML report file. Two configurable parameters exist: outputfile verbose If you want to write every HTTP request/response to a text file, you should use the textfile plugin. Plugin type Output Options Name | Type | Default Value | Description | Help...

7AI score
Exploits0
Rows per page
Query Builder