Vulnerabilities > Information Exposure Through an Error Message

DATE CVE VULNERABILITY TITLE RISK
2021-09-07 CVE-2021-32766 Information Exposure Through an Error Message vulnerability in Nextcloud
Nextcloud Text is an open source plaintext editing application which ships with the nextcloud server.
network
low complexity
nextcloud CWE-209
5.0
2021-09-07 CVE-2021-35947 Information Exposure Through an Error Message vulnerability in Owncloud
The public share controller in the ownCloud server before version 10.8.0 allows a remote attacker to see the internal path and the username of a public share by including invalid characters in the URL.
network
low complexity
owncloud CWE-209
5.0
2021-08-30 CVE-2021-25958 Information Exposure Through an Error Message vulnerability in Apache Ofbiz
In Apache Ofbiz, versions v17.12.01 to v17.12.07 implement a try catch exception to handle errors at multiple locations but leaks out sensitive table info which may aid the attacker for further recon.
network
low complexity
apache CWE-209
5.0
2021-08-23 CVE-2021-22249 Information Exposure Through an Error Message vulnerability in Gitlab
A verbose error message in GitLab EE affecting all versions since 12.2 could disclose the private email address of a user invited to a group
network
low complexity
gitlab CWE-209
4.0
2021-08-11 CVE-2017-16629 Information Exposure Through an Error Message vulnerability in Sapphireims 40971
In SapphireIMS 4097_1, it is possible to guess the registered/active usernames of the software from the errors it gives out for each type of user on the Login form.
network
low complexity
sapphireims CWE-209
5.0
2021-07-26 CVE-2021-20430 Information Exposure Through an Error Message vulnerability in IBM I2 Analyze 4.3.0/4.3.1/4.3.2
IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
5.0
2021-07-26 CVE-2021-29766 Information Exposure Through an Error Message vulnerability in IBM I2 Analyze 4.3.0/4.3.1/4.3.2
IBM i2 Analyst's Notebook Premium (IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2) could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
5.0
2021-07-26 CVE-2021-29767 Information Exposure Through an Error Message vulnerability in IBM I2 Analysts Notebook 9.2.0/9.2.1/9.2.2
IBM i2 Analyst's Notebook Premium 9.2.0, 9.2.1, and 9.2.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
5.0
2021-07-26 CVE-2021-29784 Information Exposure Through an Error Message vulnerability in IBM I2 Analyze 4.3.0/4.3.1/4.3.2
IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser.
network
low complexity
ibm CWE-209
4.0
2021-07-21 CVE-2021-32775 Information Exposure Through an Error Message vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
low complexity
combodo CWE-209
4.0