Vulnerabilities > Information Exposure

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-21	CVE-2024-10316	The Stratum – Elementor Widgets plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.4 in includes/templates/content-switcher.php. network low complexity CWE-200	4.3
2024-11-21	CVE-2024-9542	The Sky Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.1 via the render function in modules/content-switcher/widgets/content-switcher.php. network low complexity CWE-200	4.3
2024-11-20	CVE-2024-10365	The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.0.3 via the render function in modules/widgets/tp_carousel_anything.php, modules/widgets/tp_page_scroll.php, and other widgets. network low complexity CWE-200	4.3
2024-11-15	CVE-2022-20648	A vulnerability in a debug function for Cisco RCM for Cisco StarOS Software could allow an unauthenticated, remote attacker to perform debug actions that could result in the disclosure of confidential information that should be restricted. This vulnerability exists because of a debug service that incorrectly listens to and accepts incoming connections. network low complexity CWE-200	5.3
2024-11-09	CVE-2024-10352	The Magical Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.4 via the get_content_type function in includes/widgets/content-reveal.php. network low complexity CWE-200	4.3
2024-11-09	CVE-2024-8756	The Quform - WordPress Form Builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.20.0 via the 'saveUploadedFile' function. network low complexity CWE-200	5.3
2024-11-09	CVE-2024-10285	The CE21 Suite plugin for WordPress is vulnerable to sensitive information disclosure via the plugin-log.txt in versions up to, and including, 2.2.0. network low complexity CWE-200 critical	9.8
2024-11-06	CVE-2024-6861	A disclosure of sensitive information flaw was found in foreman via the GraphQL API. network low complexity CWE-200	7.5
2024-11-05	CVE-2024-10084	The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Basic Information Disclosure in all versions up to, and including, 4.5 via the CF7_get_post_var shortcode. network low complexity CWE-200	4.3
2024-10-31	CVE-2024-8553	A vulnerability was found in Foreman's loader macros introduced with report templates. network low complexity CWE-200	6.3

Vulnerabilities > Information Exposure {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Information Exposure"}]}

Vulnerabilities > Information Exposure