35 matches found
CVE-2025-1308
A vulnerability exists in PX Backup whereby sensitive information may be logged under specific conditions...
EUVD-2025-36177
ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 are vulnerable to a sensitive information logging issue. An authenticated user with access to the logs could potentially obtain the sensitive agent token...
PT-2025-43944
Name of the Vulnerable Software and Affected Versions ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 Description An authenticated user with access to logs may be able to obtain the sensitive agent token. The issue involves sensitive information logging. Recommendations Upda...
EUVD-2015-8219
Malware in sbrugna...
EUVD-2018-15605
Malware in sbrugna...
EUVD-2023-2667
Malicious code in bioql PyPI...
EUVD-2025-3166
Malicious code in bioql PyPI...
EUVD-2024-29194
Malicious code in bioql PyPI...
EUVD-2023-43170
Malicious code in bioql PyPI...
CVE-2024-35117
IBM OpenPages with Watson 9.0 may write sensitive information, under specific configurations, in clear text to the system tracing log files that could be obtained by a privileged user...
CVE-2023-35695
A remote attacker could leverage a vulnerability in Trend Micro Mobile Security Enterprise 9.8 SP5 to download a particular log file which may contain sensitive information regarding the product...
CVE-2025-1308
Technical details about CVE-2025-1308 are not publicly available in the provided connected documents. Monitor for future updates from vendors and security advisories before assessing impact, affected versions, or fixes.
CVE-2025-1308 PX Backup Improper Sanitization Vulnerability
A vulnerability exists in PX Backup whereby sensitive information may be logged under specific conditions...
CVE-2025-32698 LogPager.php: Restriction enforcer functions do not correctly enforce suppression restrictions
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/logging/LogPager.Php. This issue affects MediaWiki: before 1.39.12, 1.42.6, 1.43.1...
Security Bulletin: IBM Maximo Application Suite Ai-Broker Component vulnerable to vulnerable to Insertion of Sensitive Information into Log File where the redis password is being logged in the standard logging.
Summary Security Bulletin: IBM Maximo Application Suite Ai-Broker Component vulnerable to vulnerable to Insertion of Sensitive Information into Log File where the redis password is being logged in the standard logging. This bulletin contains information regarding the vulnerability and its fixture...
CVE-2025-2002
CWE-532: Insertion of Sensitive Information into Log Files vulnerability exists that could cause the disclosure of FTP server credentials when the FTP server is deployed, and the device is placed in debug mode by an administrative user and the debug files are exported from the device...
CVE-2025-1979
Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Information into Log File where the redis password is being logged in the standard logging. If the redis password is passed as an argument, it will be logged and could potentially leak the password. This is only...
CVE-2025-1979
Summary: CVE-2025-1979 affects the Python package Ray prior to 2.43.0, where the Redis password can be logged in standard logging when the password is passed as an argument. This is exploitable if logging is enabled, Redis uses password authentication, and those logs are accessible to an attacker...
CVE-2025-1075 LDAP credentials logged to Apache error log
Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions 2.3.0p27, 2.2.0p40, and 2.1.0p51 EOL causes LDAP credentials to be written to Apache error log file accessible to administrators...
CVE-2025-23413 BIG-IP Next Central Manager vulnerability
When users log in through the webUI or API using local authentication, BIG-IP Next Central Manager may log sensitive information in the pgaudit log files. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...