Vulnerabilities > Information Exposure Through Sent Data
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-18 | CVE-2021-1425 | A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to access sensitive information on an affected device. The vulnerability exists because confidential information is being included in HTTP requests that are exchanged between the user and the device. | 4.3 |
| 2023-04-11 | CVE-2023-1975 | Information Exposure Through Sent Data vulnerability in Answer Insertion of Sensitive Information Into Sent Data in GitHub repository answerdev/answer prior to 1.0.8. | 6.5 |
| 2022-04-12 | CVE-2022-27671 | Information Exposure Through Sent Data vulnerability in SAP Businessobjects Business Intelligence Platform 420/430 A CSRF token visible in the URL may possibly lead to information disclosure vulnerability. | 6.5 |
| 2021-06-01 | CVE-2021-32653 | Information Exposure Through Sent Data vulnerability in Nextcloud Server Nextcloud Server is a Nextcloud package that handles data storage. | 2.7 |
| 2021-06-01 | CVE-2020-27748 | Information Exposure Through Sent Data vulnerability in Freedesktop Xdg-Utils A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. | 6.5 |
| 2021-02-04 | CVE-2021-1128 | Information Exposure Through Sent Data vulnerability in Cisco IOS XR A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local attacker to view more information than their privileges allow. | 5.5 |
| 2021-01-20 | CVE-2021-1129 | Information Exposure Through Sent Data vulnerability in Cisco products A vulnerability in the authentication for the general purpose APIs implementation of Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to access general system information and certain configuration information from an affected device. | 5.3 |
| 2020-09-01 | CVE-2020-14514 | Information Exposure Through Sent Data vulnerability in Nmfc Power Line Communications All trailer Power Line Communications are affected. | 4.3 |
| 2019-12-12 | CVE-2019-14849 | Information Exposure Through Sent Data vulnerability in Redhat 3Scale 2.0/2.4 A vulnerability was found in 3scale before version 2.6, did not set the HTTPOnly attribute on the user session cookie. | 5.4 |