Vulnerabilities > Information Exposure Through an Error Message
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-06-14 | CVE-2022-31047 | Information Exposure Through an Error Message vulnerability in Typo3 TYPO3 is an open source web content management system. | 6.5 |
2022-06-13 | CVE-2022-2062 | Information Exposure Through an Error Message vulnerability in Xgenecloud Nocodb Generation of Error Message Containing Sensitive Information in GitHub repository nocodb/nocodb prior to 0.91.7+. | 7.5 |
2022-06-02 | CVE-2022-31023 | Information Exposure Through an Error Message vulnerability in Lightbend Play Framework Play Framework is a web framework for Java and Scala. | 5.0 |
2022-06-02 | CVE-2022-26973 | Information Exposure Through an Error Message vulnerability in Barco Control Room Management Suite Barco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. | 5.0 |
2022-05-20 | CVE-2022-24906 | Information Exposure Through an Error Message vulnerability in Nextcloud Deck Nextcloud Deck is a Kanban-style project & personal management tool for Nextcloud, similar to Trello. | 4.3 |
2022-05-06 | CVE-2022-26070 | Information Exposure Through an Error Message vulnerability in Splunk When handling a mismatched pre-authentication cookie, the application leaks the internal error message in the response, which contains the Splunk Enterprise local system path. | 4.0 |
2022-05-06 | CVE-2021-39023 | Information Exposure Through an Error Message vulnerability in IBM Guardium Data Encryption IBM Guardium Data Encryption (GDE) 4.0.0 and 5.0.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. | 5.0 |
2022-05-04 | CVE-2021-43206 | Information Exposure Through an Error Message vulnerability in Fortinet Fortios and Fortiproxy A server-generated error message containing sensitive information in Fortinet FortiOS 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.x, 6.0.x and FortiProxy 7.0.0 through 7.0.1, 2.0.x allows malicious webservers to retrieve a web proxy's client username and IP via same origin HTTP requests triggering proxy-generated HTTP status codes pages. | 4.3 |
2022-04-20 | CVE-2022-29266 | Information Exposure Through an Error Message vulnerability in Apache Apisix In APache APISIX before 3.13.1, the jwt-auth plugin has a security issue that leaks the user's secret key because the error message returned from the dependency lua-resty-jwt contains sensitive information. | 5.0 |
2022-04-19 | CVE-2021-39033 | Information Exposure Through an Error Message vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5 and 6.1.0.0 through 6.1.1.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. | 4.0 |