ReadToMyShoe - Generation of Error Message Containing Sensitive Information

ReadToMyShoe generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google Cloud TTS request, it will include the full URL of the request, which...

CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

VulnCheck KEV: CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

Exploit for Generation of Error Message Containing Sensitive Information in Readtomyshoe_Project Readtomyshoe

CVE-2023-27587-PoC The simple PoC of CVE-2023-27587 What i...

CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

Cross site request forgery (csrf)

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

PT-2023-21228 · Google · Google Cloud Api +1

Name of the Vulnerable Software and Affected Versions: ReadtoMyShoe versions prior to commit 8533b01 Description: The issue arises when an error occurs while adding an article to the web app, resulting in an error message that includes sensitive information. Specifically, if the error is related ...

ReadtoMyShoe 安全漏洞

ReadtoMyShoe is a web application used for speech-to-text conversion. A security vulnerability exists in ReadtoMyShoe that stems from a request URL containing a Google Cloud API key...

CVE-2023-27587

ReadtoMyShoe, a web app that lets users upload articles and listen to them later, generates an error message containing sensitive information prior to commit 8533b01. If an error occurs when adding an article, the website shows the user an error message. If the error originates from the Google...

CVE-2023-27587

ReadtoMyShoe (RTMS) is affected by CVE-2023-27587. When an article-adding error occurs, the TTS request URL may leak the Google Cloud API key in the full URL. A PoC demonstrates the leaked key in the error output; the issue is tied to pre-8533b01 behavior. The advisory notes that this has been pa...