Vulnerabilities > Information Exposure Through Log Files
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-03 | CVE-2024-37286 | Information Exposure Through Log Files vulnerability in Elastic APM Server APM server logs contain document body from a partially failed bulk index request. | 6.5 |
| 2024-08-03 | CVE-2024-38321 | Information Exposure Through Log Files vulnerability in IBM Business Automation Workflow IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2, and 24.0.0 stores potentially sensitive information in log files under certain situations that could be read by an authenticated user. | 6.5 |
| 2024-08-02 | CVE-2024-42349 | Information Exposure Through Log Files vulnerability in Fogproject FOG is a cloning/imaging/rescue suite/inventory management system. | 5.3 |
| 2024-08-01 | CVE-2024-6687 | Information Exposure Through Log Files vulnerability in Thisfunctional CTT Expresso Para Woocommerce The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information exposure in all versions up to and including 3.2.12 via the /wp-content/uploads/cepw directory. | 7.5 |
| 2024-07-31 | CVE-2024-6977 | Information Exposure Through Log Files vulnerability in Catonetworks Cato Client A vulnerability in Cato Networks SDP Client on Windows allows the insertion of sensitive information into the log file, which can lead to an account takeover. | 6.5 |
| 2024-07-26 | CVE-2023-49921 | Information Exposure Through Log Files vulnerability in Elastic Elasticsearch An issue was discovered by Elastic whereby Watcher search input logged the search query results on DEBUG log level. | 6.5 |
| 2024-07-22 | CVE-2024-41824 | Information Exposure Through Log Files vulnerability in Jetbrains Teamcity In JetBrains TeamCity before 2024.07 parameters of the "password" type could leak into the build log in some specific cases | 6.5 |
| 2024-07-09 | CVE-2024-27784 | Information Exposure Through Log Files vulnerability in Fortinet Fortiaiops 2.0.0 Multiple Exposure of sensitive information to an unauthorized actor vulnerabilities [CWE-200] in FortiAIOps version 2.0.0 may allow an authenticated, remote attacker to retrieve sensitive information from the API endpoint or log files. | 6.5 |
| 2024-07-07 | CVE-2024-40596 | Information Exposure Through Log Files vulnerability in Mediawiki An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. | 4.3 |
| 2024-07-07 | CVE-2024-40598 | Information Exposure Through Log Files vulnerability in Mediawiki An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. | 4.3 |