Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-18 | CVE-2023-29857 | Information Exposure vulnerability in Teslamate Project Teslamate 1.27.1 An issue in Teslamate v1.27.1 allows attackers to obtain sensitive information via directly accessing the teslamate link. | 5.3 |
| 2023-05-11 | CVE-2023-28357 | Information Exposure vulnerability in Rocket.Chat A vulnerability has been identified in Rocket.Chat, where the ACL checks in the Slash Command /mute occur after checking whether a user is a member of a given channel, leaking private channel members to unauthorized users. | 4.3 |
| 2023-05-09 | CVE-2023-31404 | Information Exposure vulnerability in SAP Businessobjects Business Intelligence 420/430 Under certain conditions, SAP BusinessObjects Business Intelligence Platform (Central Management Service) - versions 420, 430, allows an attacker to access information which would otherwise be restricted. | 5.0 |
| 2023-04-16 | CVE-2022-34125 | Information Exposure vulnerability in Glpi-Project Cmdb front/icon.send.php in the CMDB plugin before 3.0.3 for GLPI allows attackers to gain read access to sensitive information via a _log/ pathname in the file parameter. | 6.5 |
| 2023-03-24 | CVE-2023-28444 | Information Exposure vulnerability in Angular-Server-Side-Configuration Project Angular-Server-Side-Configuration 15.0.0/15.0.1/15.0.2 angular-server-side-configuration helps configure an angular application at runtime on the server or in a docker container via environment variables. | 7.5 |
| 2023-03-17 | CVE-2023-0027 | Information Exposure vulnerability in Rockwellautomation Modbus TCP Server ADD on Instructions 2.00.00/2.00.03 Rockwell Automation Modbus TCP Server AOI prior to 2.04.00 is vulnerable to an unauthorized user sending a malformed message that could cause the controller to respond with a copy of the most recent response to the last valid request. | 4.3 |
| 2023-03-10 | CVE-2023-23327 | Information Exposure vulnerability in Avantfax 3.3.7 An Information Disclosure vulnerability exists in AvantFAX 3.3.7. | 4.9 |
| 2023-03-07 | CVE-2023-1263 | Information Exposure vulnerability in Niteothemes Coming Soon & Maintenance The CMP – Coming Soon & Maintenance plugin for WordPress is vulnerable to Information Exposure in versions up to, and including, 4.1.6 via the cmp_get_post_detail function. | 5.3 |
| 2023-03-07 | CVE-2022-27490 | Information Exposure vulnerability in Fortinet products A exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 through 6.0.4, FortiAnalyzer version 6.0.0 through 6.0.4, FortiPortal version 6.0.0 through 6.0.9, 5.3.0 through 5.3.8, 5.2.x, 5.1.0, 5.0.x, 4.2.x, 4.1.x, FortiSwitch version 7.0.0 through 7.0.4, 6.4.0 through 6.4.10, 6.2.x, 6.0.x allows an attacker which has obtained access to a restricted administrative account to obtain sensitive information via `diagnose debug` commands. | 6.5 |
| 2023-03-07 | CVE-2022-41329 | Information Exposure vulnerability in Fortinet Fortios and Fortiproxy An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiProxy version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.7, FortiOS version 7.2.0 through 7.2.3 and 7.0.0 through 7.0.9 allows an unauthenticated attackers to obtain sensitive logging informations on the device via crafted HTTP GET requests. | 5.3 |