Vulnerabilities > Information Exposure

DATE CVE VULNERABILITY TITLE RISK
2018-06-04 CVE-2017-16052 Information Exposure vulnerability in Node-Fabric Project Node-Fabric
`node-fabric` was a malicious module published with the intent to hijack environment variables.
network
low complexity
node-fabric-project CWE-200
7.5
7.5
2018-06-04 CVE-2017-16051 Information Exposure vulnerability in Sqliter Project Sqliter
`sqliter` was a malicious module published with the intent to hijack environment variables.
network
low complexity
sqliter-project CWE-200
7.5
7.5
2018-06-04 CVE-2017-16050 Information Exposure vulnerability in Sqlite.Js Project Sqlite.Js
`sqlite.js` was a malicious module published with the intent to hijack environment variables.
network
low complexity
sqlite-js-project CWE-200
7.5
7.5
2018-06-04 CVE-2017-16049 Information Exposure vulnerability in Nodesqlite Project Nodesqlite
`nodesqlite` was a malicious module published with the intent to hijack environment variables.
network
low complexity
nodesqlite-project CWE-200
7.5
7.5
2018-06-04 CVE-2017-16048 Information Exposure vulnerability in Node-Sqlite Project Node-Sqlite
`node-sqlite` was a malicious module published with the intent to hijack environment variables.
network
low complexity
node-sqlite-project CWE-200
7.5
7.5
2018-06-04 CVE-2017-16045 Information Exposure vulnerability in Jquery.Js Project Jquery.Js
`jquery.js` was a malicious module published with the intent to hijack environment variables.
network
low complexity
jquery-js-project CWE-200
7.5
7.5
2018-06-04 CVE-2017-16044 Information Exposure vulnerability in D3.Js Project D3.Js
`d3.js` was a malicious module published with the intent to hijack environment variables.
network
low complexity
d3-js-project CWE-200
7.5
7.5
2018-06-04 CVE-2017-16024 Information Exposure vulnerability in multiple products
The sync-exec module is used to simulate child_process.execSync in node versions <0.11.9.
network
low complexity
sync-exec-project nodejs CWE-200
6.5
6.5
2018-06-01 CVE-2018-3809 Information Exposure vulnerability in Zeit Serve 6.5.3
Information exposure through directory listings in serve 6.5.3 allows directory listing and file access even when they have been set to be ignored.
network
low complexity
zeit CWE-200
5.3
5.3
2018-06-01 CVE-2018-11195 Information Exposure vulnerability in Mahara
Mahara 17.04 before 17.04.8 and 17.10 before 17.10.5 and 18.04 before 18.04.1 are vulnerable to the browser "back and refresh" attack.
low complexity
mahara CWE-200
6.8
6.8