Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-23 | CVE-2014-10079 | Information Exposure vulnerability in Vembu Storegrid 4.4 In Vembu StoreGrid 4.4.x, the front page of the server web interface leaks the private IP address in the "ipaddress" hidden form value of the HTML source code, which is disclosed because of incorrect processing of an index.php/ trailing slash. | 5.3 |
| 2019-02-21 | CVE-2018-1950 | Information Exposure vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance generates an error message that includes sensitive information about its environment, users, or associated data which could be used in further attacks against the system. | 4.3 |
| 2019-02-21 | CVE-2018-1949 | Information Exposure vulnerability in IBM Security Identity Governance and Intelligence IBM Security Identity Governance and Intelligence 5.2 through 5.2.4.1 Virtual Appliance discloses sensitive information to unauthorized users. | 4.3 |
| 2019-02-13 | CVE-2019-3610 | Information Exposure vulnerability in Mcafee True KEY 3.1.9211.0 Data Leakage Attacks vulnerability in Microsoft Windows client in McAfee True Key (TK) 3.1.9211.0 and earlier allows local users to expose confidential data via specially crafted malware. | 5.5 |
| 2019-02-11 | CVE-2018-12006 | Information Exposure vulnerability in Google Android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Users with no extra privileges can potentially access leaked data due to uninitialized padding present in display function. | 5.5 |
| 2019-02-11 | CVE-2018-20776 | Information Exposure vulnerability in Frog CMS Project Frog CMS 0.9.5 Frog CMS 0.9.5 provides a directory listing for a /public request. | 7.5 |
| 2019-02-08 | CVE-2019-7628 | Information Exposure vulnerability in Redhat Pagure 5.2 Pagure 5.2 leaks API keys by e-mailing them to users. | 5.9 |
| 2019-02-07 | CVE-2018-1296 | Information Exposure vulnerability in Apache Hadoop In Apache Hadoop 3.0.0-alpha1 to 3.0.0, 2.9.0, 2.8.0 to 2.8.3, and 2.5.0 to 2.7.5, HDFS exposes extended attribute key/value pairs during listXAttrs, verifying only path-level search access to the directory rather than path-level read permission to the referent. | 7.5 |
| 2019-02-07 | CVE-2019-7535 | Information Exposure vulnerability in Gurock Testrail 5.3.0.3603 index.php in Gurock TestRail 5.3.0.3603 returns potentially sensitive information for an invalid request, as demonstrated by full path disclosure and the identification of PHP as the backend technology. | 5.3 |
| 2019-02-06 | CVE-2019-1003021 | Information Exposure vulnerability in Jenkins Openid Connect Authentication An exposure of sensitive information vulnerability exists in Jenkins OpenId Connect Authentication Plugin 1.4 and earlier in OicSecurityRealm/config.jelly that allows attackers able to view a Jenkins administrator's web browser output, or control the browser (e.g. | 4.3 |