Angular 跨站脚本漏洞

Angular is an open-source development platform created by Angular. It is used to build mobile and desktop web applications using TypeScript/JavaScript and other languages. Versions of Angular prior to 22.0.0-next.3, 21.2.4, 20.3.18, and 19.2.20 have a cross-site scripting vulnerability. This...

EUVD-2021-10164

Malware in sbrugna...

CVE-2025-40759

A vulnerability has been identified in SIMATIC S7-PLCSIM V17 All versions, SIMATIC STEP 7 V17 All versions V17 Update 9, SIMATIC STEP 7 V18 All versions, SIMATIC STEP 7 V19 All versions V19 Update 4, SIMATIC STEP 7 V20 All versions V20 Update 4, SIMATIC WinCC V17 All versions V17 Update 9, SIMATI...

CVE-2021-23046

On all versions of Guided Configuration before 8.0.0, when a configuration that contains secure properties is created and deployed from Access Guided Configuration AGC, secure properties are logged in restnoded logs. Note: Software versions which have reached End of Technical Support EoTS are not...

CVE-2024-6916 Zowe CLI --show-inputs-only displays securely stored properties

A vulnerability in Zowe CLI allows local, privileged actors to display securely stored properties in cleartext within a terminal using the '--show-inputs-only' flag...

GHSA-3HWC-RQWP-V36Q Apache Solr can leak certain passwords due to System Property redaction logic inconsistencies

Insufficiently Protected Credentials vulnerability in Apache Solr. This issue affects Apache Solr from 6.0.0 through 8.11.2, from 9.0.0 before 9.3.0. One of the two endpoints that publishes the Solr process' Java system properties, /admin/info/properties, was only setup to hide system properties...

K70652532: F5 BIG-IP Guided Configuration logging vulnerability CVE-2021-23046

Security Advisory Description When a configuration that contains secure properties is created and deployed from BIG-IP Guided Configuration AGC, secure properties are logged in restnoded logs. CVE-2021-23046 Impact Users with access to restnoded logs may gain access to sensitive information from...

CVE-2021-23046

On all versions of Guided Configuration before 8.0.0, when a configuration that contains secure properties is created and deployed from Access Guided Configuration AGC, secure properties are logged in restnoded logs. Note: Software versions which have reached End of Technical Support EoTS are not...

CVE-2021-23046

On all versions of Guided Configuration before 8.0.0, when a configuration that contains secure properties is created and deployed from Access Guided Configuration AGC, secure properties are logged in restnoded logs. Note: Software versions which have reached End of Technical Support EoTS are not...

Design/Logic Flaw

On all versions of Guided Configuration before 8.0.0, when a configuration that contains secure properties is created and deployed from Access Guided Configuration AGC, secure properties are logged in restnoded logs. Note: Software versions which have reached End of Technical Support EoTS are not...

CVE-2021-23046

On all versions of Guided Configuration before 8.0.0, when a configuration that contains secure properties is created and deployed from Access Guided Configuration AGC, secure properties are logged in restnoded logs. Note: Software versions which have reached End of Technical Support EoTS are not...

CVE-2021-23046

CVE-2021-23046 affects BIG-IP Guided Configuration. When a configuration containing secure properties is created and deployed from Access Guided Configuration (AGC), secure properties are logged in restnoded logs, exposing sensitive information. The issue applies to Guided Configuration versions ...

F5 Networks BIG-IP : F5 BIG-IP Guided Configuration logging vulnerability (K70652532)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.3 / 15.1.8 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K70652532 advisory. When a configuration that contains secure properties is created and deployed from BIG-IP Guided Configurati...

Security Bulletin: Secure Properties In Processes Can Be Revealed (CVE-2019-4168)

Summary IBM UrbanCode Deploy could allow an authenticated user to obtain sensitive information that could be used in further attacks against the system. Vulnerability Details CVEID: CVE-2019-4168 DESCRIPTION: IBM UrbanCode Deploy could allow an authenticated user to obtain sensitive information...

Security Bulletin: Authenticated Users in IBM UrbanCode Deploy can Obtain Secure Properties (CVE-2017-1752)

Summary Previous releases of IBM UrbanCode Deploy allow authenticated users to view secure information.. Vulnerability Details CVEID: CVE-2017-1752 DESCRIPTION: IBM UrbanCode Deploy could allow an authenticated privileged user to obtain highly sensitive information. CVSS Base Score: 6.8 CVSS...

CVE-2016-0364

IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 does not properly implement a logging-obfuscation feature for secure properties, which allows remote authenticated users to obtain sensitive information via vectors involving special characters...