CVE-2021-27026

A flaw was divered in Puppet Enterprise and other Puppet products where sensitive plan parameters may be logged...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when processing security logging commands in a trusted application...

EUVD-2019-8919

Malware in sbrugna...

EUVD-2004-1884

Malware in sbrugna...

EUVD-2022-32616

Malicious code in bioql PyPI...

EUVD-2023-1355

Malicious code in bioql PyPI...

AZL-65226 CVE-2024-47252 affecting package httpd for versions less than 2.4.64-1

Insufficient escaping of user-supplied data in modssl in Apache HTTP Server 2.4.63 and earlier allows an untrusted SSL/TLS client to insert escape characters into log files in some configurations. In a logging configuration where CustomLog is used with "%varnamex" or "%varnamec" to log variables...

CVE-2024-50296

creationtimestamp| type| source ---|---|--- 2024-11-19 03:39:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113507538148924735 2024-11-19 04:16:04+00:00| seen| https://t.me/cvedetector/11423 2025-08-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-...

PYSEC-2024-191

The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Prior to version 3.12.3, when the logging level was set by the user to DEBUG, the Connector could have logged Duo passcodes when specified...

WordPress Send Users Email Plugin <= 1.5.1 is vulnerable to Sensitive Data Exposure

Software Send Users Email Type Plugin Vulnerable versions = 1.5.1 Fixed in 1.5.2 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-38760 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 13aaf3930e9f Credits Joshua...

WordPress MBE eShip Plugin <= 2.1.2 is vulnerable to Sensitive Data Exposure

Software MBE eShip Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.2.1 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-38742 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID df94a639a0f7 Credits Joshua Chan...

WordPress Coming Soon Plugin <= 1.6.3 is vulnerable to Sensitive Data Exposure

Software Coming Soon Type Plugin Vulnerable versions = 1.6.3 Fixed in N/A OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-38756 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 722374741f1c Credits Joshua Chan...

WordPress affiliate-toolkit Plugin <= 3.4.4 is vulnerable to Sensitive Data Exposure

Software affiliate-toolkit Type Plugin Vulnerable versions = 3.4.4 Fixed in 3.4.5 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-37205 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 304bb1692328 Credits Joshua...

WordPress Dynamics 365 Integration Plugin <= 1.3.17 is vulnerable to Sensitive Data Exposure

Software Dynamics 365 Integration Type Plugin Vulnerable versions = 1.3.17 Fixed in 1.3.18 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-34550 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 2397ac5f5483 Credi...

WordPress Contact Form Email Plugin <= 1.3.44 is vulnerable to Sensitive Data Exposure

Software Contact Form Email Type Plugin Vulnerable versions = 1.3.44 Fixed in 1.3.45 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-31302 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 17dc1fca0d2c Credits...

WordPress WordPress Backup & Migration Plugin <= 1.4.7 is vulnerable to Sensitive Data Exposure

Software WordPress Backup & Migration Type Plugin Vulnerable versions = 1.4.7 Fixed in 1.4.8 OWASP Top 10 A9: Security Logging and Monitoring Failures Classification Sensitive Data Exposure CVE CVE-2024-31254 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID aa1b650827bf...

CVE-2024-3165

System-Maintenance- Log Files in dotCMS dashboard is providing the username/password for database connections in the log output. Nevertheless, this is a moderate issue as it requires a backend admin as well as that dbs are locked down by environment. OWASP Top 10 - A05 Insecure Design OWASP Top...

CVE-2024-3165

System-Maintenance- Log Files in dotCMS dashboard is providing the username/password for database connections in the log output. Nevertheless, this is a moderate issue as it requires a backend admin as well as that dbs are locked down by environment. OWASP Top 10 - A05 Insecure Design OWASP Top...

CVE-2024-3165 Database Credential Exposure in the Logs

System-Maintenance- Log Files in dotCMS dashboard is providing the username/password for database connections in the log output. Nevertheless, this is a moderate issue as it requires a backend admin as well as that dbs are locked down by environment. OWASP Top 10 - A05 Insecure Design OWASP Top...

CVE-2024-3165

CVE-2024-3165 affects dotCMS where the System-&gt;Maintenance-&gt; Log Files output reveals database credentials (username/password) in logs. This is described as a moderate issue requiring backend admin access and environment-led DB lockdown. Connected documents confirm the vulnerability stems f...