Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-04 | CVE-2018-21242 | Information Exposure vulnerability in Foxitsoftware Phantompdf An issue was discovered in Foxit PhantomPDF before 8.3.6. | 9.8 |
| 2020-06-04 | CVE-2020-7030 | Information Exposure vulnerability in Avaya IP Office A sensitive information disclosure vulnerability was discovered in the web interface component of IP Office that may potentially allow a local user to gain unauthorized access to the component. | 5.5 |
| 2020-06-03 | CVE-2011-2863 | Information Exposure vulnerability in Google Chrome Insufficient policy enforcement in V8 in Google Chrome prior to 14.0.0.0 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. | 6.5 |
| 2020-06-03 | CVE-2020-13597 | Information Exposure vulnerability in Projectcalico Calico Clusters using Calico (version 3.14.0 and below), Calico Enterprise (version 2.8.2 and below), may be vulnerable to information disclosure if IPv6 is enabled but unused. | 3.5 |
| 2020-06-02 | CVE-2020-13764 | Information Exposure vulnerability in Rocketgenius Gravityforms common.php in the Gravity Forms plugin before 2.4.9 for WordPress can leak hashed passwords because user_pass is not considered a special case for a $current_user->get($property) call. | 7.5 |
| 2020-06-01 | CVE-2014-8940 | Information Exposure vulnerability in Piwigo Lexiglot Lexiglot through 2014-11-20 allows remote attackers to obtain sensitive information (names and details of projects) by visiting the /update.log URI. | 5.3 |
| 2020-05-29 | CVE-2020-5573 | Information Exposure vulnerability in Cybozu Kintone Android App 'kintone mobile for Android' 1.0.0 to 2.5 allows an attacker to obtain credential information registered in the product via unspecified vectors. | 4.6 |
| 2020-05-29 | CVE-2020-5572 | Information Exposure vulnerability in Cybozu Mailwise 1.0.1 Android App 'Mailwise for Android' 1.0.0 to 1.0.1 allows an attacker to obtain credential information registered in the product via unspecified vectors. | 4.6 |
| 2020-05-27 | CVE-2020-11059 | Information Exposure vulnerability in Aegir Project Aegir In AEgir greater than or equal to 21.7.0 and less than 21.10.1, aegir publish and aegir build may leak secrets from environment variables in the browser bundle published to npm. | 7.5 |
| 2020-05-27 | CVE-2020-10945 | Information Exposure vulnerability in Centreon and Widget-Host-Monitoring Centreon before 19.10.7 exposes Session IDs in server responses. | 4.3 |