Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-13 | CVE-2024-0490 | Information Exposure vulnerability in Huaxiaerp Huaxia ERP A vulnerability was found in Huaxia ERP up to 3.1. | 7.5 |
| 2023-12-28 | CVE-2023-27447 | Information Exposure vulnerability in Veronalabs WP SMS Exposure of Sensitive Information to an Unauthorized Actor vulnerability in VeronaLabs WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc.This issue affects WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc: from n/a through 6.0.4. | 7.5 |
| 2023-12-21 | CVE-2023-49162 | Information Exposure vulnerability in Bigcommerce Exposure of Sensitive Information to an Unauthorized Actor vulnerability in BigCommerce BigCommerce For WordPress.This issue affects BigCommerce For WordPress: from n/a through 5.0.6. | 7.5 |
| 2023-11-22 | CVE-2023-6264 | Information Exposure vulnerability in Devolutions Server Information leak in Content-Security-Policy header in Devolutions Server 2023.3.7.0 allows an unauthenticated attacker to list the configured Devolutions Gateways endpoints. | 5.3 |
| 2023-10-20 | CVE-2023-4796 | Information Exposure vulnerability in Booster for Woocommerce The Booster for WooCommerce for WordPress is vulnerable to Information Disclosure via the 'wcj_wp_option' shortcode in versions up to, and including, 7.1.0 due to insufficient controls on the information retrievable via the shortcode. | 4.3 |
| 2023-10-20 | CVE-2023-5070 | Information Exposure vulnerability in Ultimatelysocial Social Media Share Buttons & Social Sharing Icons The Social Media Share Buttons & Social Sharing Icons plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.8.5 via the sfsi_save_export function. | 6.5 |
| 2023-10-18 | CVE-2023-45912 | Information Exposure vulnerability in Wipotec Comscale 4.3.29.21344/4.4.12.723 WIPOTEC GmbH ComScale v4.3.29.21344 and v4.4.12.723 fails to validate user sessions, allowing unauthenticated attackers to read files from the underlying operating system and obtain directory listings. | 7.5 |
| 2023-10-11 | CVE-2023-44187 | Information Exposure vulnerability in Juniper Junos OS Evolved An Exposure of Sensitive Information vulnerability in the 'file copy' command of Junos OS Evolved allows a local, authenticated attacker with shell access to view passwords supplied on the CLI command-line. | 5.5 |
| 2023-10-11 | CVE-2023-44097 | Information Exposure vulnerability in Huawei Emui and Harmonyos Vulnerability of the permission to access device SNs being improperly managed.Successful exploitation of this vulnerability may affect service confidentiality. | 7.5 |
| 2023-09-13 | CVE-2021-44172 | Information Exposure vulnerability in Fortinet Forticlient Endpoint Management Server An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiClientEMS versions 7.0.0 through 7.0.4, 7.0.6 through 7.0.7, in all 6.4 and 6.2 version management interface may allow an unauthenticated attacker to gain information on environment variables such as the EMS installation path. | 5.3 |