Vulnerabilities > Information Exposure Through an Error Message
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-02 | CVE-2024-47803 | Information Exposure Through an Error Message vulnerability in Jenkins Jenkins 2.478 and earlier, LTS 2.462.2 and earlier does not redact multi-line secret values in error messages generated for form submissions involving the `secretTextarea` form field. | 4.3 |
| 2024-09-25 | CVE-2024-7426 | Information Exposure Through an Error Message vulnerability in Peepso The Community by PeepSo – Social Network, Membership, Registration, User Profiles plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 6.4.6.0. | 5.3 |
| 2024-09-13 | CVE-2024-6544 | Information Exposure Through an Error Message vulnerability in Coffee2Code Custom Post Limits The Custom Post Limits plugin for WordPress is vulnerable to full path disclosure in all versions up to, and including, 4.4.1. | 5.3 |
| 2024-09-12 | CVE-2024-5435 | Information Exposure Through an Error Message vulnerability in Gitlab An issue has been discovered discovered in GitLab EE/CE affecting all versions starting from 15.10 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2 will disclose user password from repository mirror configuration. | 6.5 |
| 2024-09-08 | CVE-2024-8571 | Information Exposure Through an Error Message vulnerability in Erjemin Roll CMS A vulnerability was found in erjemin roll_cms up to 1484fe2c4e0805946a7bcf46218509fcb34883a9. | 5.3 |
| 2024-09-06 | CVE-2024-7415 | Information Exposure Through an Error Message vulnerability in Coffee2Code Remember ME Controls The Remember Me Controls plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.0.1. | 5.3 |
| 2024-08-29 | CVE-2024-45440 | Information Exposure Through an Error Message vulnerability in Drupal 20230509 core/authorize.php in Drupal 11.x-dev allows Full Path Disclosure (even when error logging is None) if the value of hash_salt is file_get_contents of a file that does not exist. | 5.3 |
| 2024-08-29 | CVE-2024-6551 | Information Exposure Through an Error Message vulnerability in Givewp The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.15.1. | 5.3 |
| 2024-08-21 | CVE-2024-41674 | Information Exposure Through an Error Message vulnerability in Okfn Ckan CKAN is an open-source data management system for powering data hubs and data portals. | 5.3 |
| 2024-08-20 | CVE-2024-43376 | Information Exposure Through an Error Message vulnerability in Umbraco CMS 14.0.0/14.1.0/14.1.1 Umbraco is an ASP.NET CMS. | 5.3 |