Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-03 | CVE-2019-19254 | Information Exposure vulnerability in Gitlab GitLab Community Edition (CE) and Enterprise Edition (EE). | 5.3 |
| 2020-01-02 | CVE-2014-6275 | Information Exposure vulnerability in multiple products FusionForge before 5.3.2 use scripts that run under the shared Apache user, which is also used by project homepages by default. | 5.9 |
| 2019-12-30 | CVE-2018-20495 | Information Exposure vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.3.x and 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 5.3 |
| 2019-12-30 | CVE-2018-20488 | Information Exposure vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 4.3 |
| 2019-12-30 | CVE-2012-5476 | Information Exposure vulnerability in multiple products Within the RHOS Essex Preview (2012.2) of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value. | 5.5 |
| 2019-12-30 | CVE-2018-1682 | Information Exposure vulnerability in IBM Watston Studio Local 1.2.3 IBM Watson Studio Local 1.2.3 could disclose sensitive information over the network that an attacked could use in further attacks against the system. | 5.3 |
| 2019-12-27 | CVE-2013-4868 | Information Exposure vulnerability in Karotz API 12.07.19.00 Karotz API 12.07.19.00: Session Token Information Disclosure | 5.3 |
| 2019-12-26 | CVE-2012-4420 | Information Exposure vulnerability in Oracle JDK 7.0 An information disclosure flaw was found in the way the Java Virtual Machine (JVM) implementation of Java SE 7 as provided by OpenJDK 7 incorrectly initialized integer arrays after memory allocation (in certain circumstances they had nonzero elements right after the allocation). | 7.5 |
| 2019-12-26 | CVE-2019-19983 | Information Exposure vulnerability in Fastvelocity Minify In the WordPress plugin, Fast Velocity Minify before 2.7.7, the full web root path to the running WordPress application can be discovered. | 4.3 |
| 2019-12-18 | CVE-2019-5073 | Information Exposure vulnerability in Wago PFC 100 Firmware and PFC 200 Firmware An exploitable information exposure vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.07(13) and 03.00.39(12), and WAGO PFC100 Firmware version 03.00.39(12). | 5.3 |