28034 matches found
CVE-2026-21783 HCL Traveler is affected by sensitive information disclosure
HCL Traveler is affected by sensitive information disclosure. The application generates some error messages that provide detailed information about errors and failures, such as internal paths, file names, sensitive tokens, credentials, error codes, or stack traces. Attackers could exploit this...
Security Bulletin: IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information (CVE-2025-14808)
Summary A sensitive information disclosure vulnerability in IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-14808 DESCRIPTION: InfoSphere Information Server could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to...
Security Bulletin: IBM InfoSphere Information Server is vulnerable to disclosure of sensitive information (CVE-2025-14790)
Summary A sensitive information disclosure vulnerability in IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-14790 DESCRIPTION: IBM InfoSphere Information Server could allow an attacker to obtain sensitive information due to insufficiently protected credential...
WordPress Smart Custom Fields plugin <= 5.0.6 - Missing Authorization to Authenticated (Contributor+) Sensitive Information Exposure via Relational Post Search vulnerability
Missing Authorization to Authenticated Contributor+ Sensitive Information Exposure via Relational Post Search vulnerability discovered by darkmode in WordPress Plugin Smart Custom Fields versions = 5.0.6...
CVE-2019-25642
Bootstrapy CMS contains multiple SQL injection vulnerabilities that allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through POST parameters. Attackers can inject SQL payloads into the threadid parameter of forum-thread.php, the subject parameter of...
EUVD-2026-14742
Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...
CVE-2026-4640
Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...
CVE-2026-4640 Galaxy Software Services|Vitals ESP - Missing Authentication
Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...
PT-2026-27529
Name of the Vulnerable Software and Affected Versions macOS versions prior to 26.4 Description A flaw exists in how the operating system parses directory paths. This could allow an application to access sensitive user data due to insufficient path validation. Recommendations Update to macOS versi...
PT-2026-27564
Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15.7.5 macOS versions prior to Sonoma 14.8.5 macOS versions prior to Tahoe 26.4 Description A permissions issue existed where an application could potentially access sensitive user data. The issue was resolved b...
PT-2026-27596
Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.7 iPadOS versions prior to 18.7.7 macOS Sequoia version 15.7.5 macOS Sonoma versions prior to 14.8.5 macOS Tahoe version 26.4 visionOS version 26.4 Description A flaw exists in the way directory paths are processed,...
PT-2026-27560
Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15.7.5 macOS versions prior to Sonoma 14.8.5 macOS versions prior to Tahoe 26.4 Description An authorization issue existed due to improved state management. This allowed an application to potentially access...
HCL Traveler 安全漏洞
HCL Traveler is a software developed by the Indian company HCL. It enables automatic, bidirectional, and wireless synchronization between HCL Domino servers and wireless handheld devices. HCL Traveler has a security vulnerability that stems from the leakage of sensitive information due to incorre...
PT-2026-27571
Name of the Vulnerable Software and Affected Versions macOS versions prior to 26.4 Description A flaw existed where an application could potentially access sensitive user data due to an issue with logic checks. The problem was addressed with improved checks. Recommendations Update to macOS versio...
PT-2026-27555
Name of the Vulnerable Software and Affected Versions macOS versions prior to 15.7.5 macOS versions prior to 14.8.5 macOS versions prior to 26.4 Description A logging issue allowed potential access to sensitive user data by applications. The issue was resolved through improved data redaction...
IX-Ray Engine 安全漏洞
IX-Ray Engine is a modern game engine open-source by the IX-Ray Team. Versions of IX-Ray Engine prior to 1.3 contained security vulnerabilities, which were caused by exposing sensitive information to unauthorized participants...
PT-2026-27589
Name of the Vulnerable Software and Affected Versions Apple iOS versions prior to 18.7.7 Apple iPadOS versions prior to 18.7.7 Apple iOS versions prior to 26.4 Apple iPadOS versions prior to 26.4 macOS Sequoia versions prior to 15.7.5 macOS Sonoma versions prior to 14.8.5 macOS Tahoe versions pri...
PT-2026-27330
Vitals ESP developed by Galaxy Software Services has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to execute certain functions to obtain sensitive information...
Galaxy Software Services Vitals ESP 访问控制错误漏洞
Galaxy Software Services Vitals ESP is an office knowledge management system developed by Galaxy Software Services. There is an access control vulnerability in Galaxy Software Services Vitals ESP, which stems from a lack of authentication. This vulnerability may allow unauthorized remote attacker...
PT-2026-27566
Name of the Vulnerable Software and Affected Versions macOS versions prior to Sequoia 15.7.5 macOS versions prior to Sonoma 14.8.5 macOS versions prior to Tahoe 26.4 Description An authorization issue was resolved through improved state management. An application could potentially access sensitiv...