HCL AION 安全漏洞

HCL AION is an AI lifecycle management platform developed by the Indian company HCL. HCL AION has a security vulnerability, which stems from the possibility of exposing sensitive details related to backend infrastructure. This could lead to the disclosure of internal system architecture or...

CVE-2025-55250

HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensitive technical details, potentially resulting in information disclosure or aiding further attacks...

CVE-2025-55250

HCL AION v2 is affected by a Technical Error Disclosure vulnerability that can expose sensitive technical details, potentially aiding information disclosure or attacker reconnaissance. The issue is described across NVD/Red Hat and related feeds with no public exploit details or remediation inform...

CVE-2025-55250 HCL AION is affected by a Technical Error Disclosure vulnerability

HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensitive technical details, potentially resulting in information disclosure or aiding further attacks...

EUVD-2026-3197

HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensitive technical details, potentially resulting in information disclosure or aiding further attacks...

PT-2026-3471

HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. This can expose sensitive technical details, potentially resulting in information disclosure or aiding further attacks...

EUVD-2024-3111

Malicious code in bioql PyPI...

CVE-2025-30675

CVE-2025-30675 in Apache CloudStack affects the listTemplates and listIsos APIs due to a flawed access-control check when domainid is specified with filters self or selfexecutable. The issue allows a Domain Admin or Resource Admin to enumerate templates/ISOs in unrelated domains, breaching isolat...

CVE-2024-55058

An insecure direct object reference IDOR vulnerability was discovered in PHPGurukul Online Birth Certificate System v1.0. This vulnerability resides in the viewid parameter of /user/view-application-detail.php. Authenticated users can exploit this flaw by manipulating the viewid parameter in the...

PT-2025-13554 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: This issue is an information disclosure problem that leaks sensitive details, such as API keys and system configurations, which could provide attackers with the necessary information to laun...

CVE-2024-9447

An information disclosure vulnerability exists in the latest version of transformeroptimus/superagi. The /get/organisation/ endpoint does not verify the user's organization, allowing any authenticated user to retrieve sensitive configuration details, including API keys, of any organization. This...

CVE-2024-55058

An insecure direct object reference IDOR vulnerability was discovered in PHPGurukul Online Birth Certificate System v1.0. This vulnerability resides in the viewid parameter of /user/view-application-detail.php. Authenticated users can exploit this flaw by manipulating the viewid parameter in the...

CVE-2024-55058

CVE-2024-55058 applies to PHPGurukul Online Birth Certificate System v1.0, where an insecure direct object reference exists in the viewid parameter of /user/view-application-detail.php. The vulnerability allows authenticated users to manipulate the viewid in the URL to access sensitive birth cert...

CVE-2024-47762 Unexpected visibility of environment variable configurations in @backstage/plugin-app-backend

Backstage is an open framework for building developer portals. Configuration supplied through APPCONFIG environment variables, for example APPCONFIGbackendlistenport=7007, where unexpectedly ignoring the visibility defined in configuration schema. This occurred even if the configuration schema...

PT-2024-37238 · Palo Alto Networks · Pan-Os

Name of the Vulnerable Software and Affected Versions: Palo Alto Networks PAN-OS versions prior to 10.2.8 Palo Alto Networks PAN-OS versions prior to 11.0.4 Description: An information exposure issue in the software enables a local system administrator to unintentionally disclose secrets,...

PT-2024-28382 · Unknown · Ispmanager

Name of the Vulnerable Software and Affected Versions: ISPmanager version 6.98.0 Description: An information disclosure issue allows attackers to access sensitive details of the root user's session via an arbitrary command. Recommendations: For ISPmanager version 6.98.0, at the moment, there is n...

CVE-2024-39182

An information disclosure vulnerability in ISPmanager v6.98.0 allows attackers to access sensitive details of the root user's session via an arbitrary command ISP6-1779...

New ‘Downfall’ Flaw Exposes Valuable Data in Generations of Intel Chips

The vulnerability could allow attackers to take advantage of an information leak to steal sensitive details like private messages, passwords, and encryption keys...

Information Disclosure

ytdlp is vulnerable to Information Disclosure. The vulnerability exists because the cookie headers are not properly handled on HTTP redirect which allows an attacker to gain access to sensitive cookie details on unrelated sites...

IBM Business Automation Workflow 安全漏洞

IBM Business Automation Workflow is a workflow automation solution from IBM in the United States. The product is primarily used for workflow management, compliance management, and has features such as workflow visibility and scalability.An information disclosure vulnerability exists in multiple...