Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-117

CWE-117

Medium likelihood

Improper Output Neutralization for Logs

Parent: CWE-116 - Improper Encoding or Escaping of Output

The product constructs a log message from external input, but it does not neutralize or incorrectly neutralizes special elements when the message is written to a log file.

93 vulnerabilities with CWE-117

CVE-2024-32474 HIGH

Sentry <24.4.1 - Info Disclosure

CVE-2024-29022 HIGH

CVE-2024-22356 MEDIUM

IBM App Connect Enterprise <12.0.9.0 - Info Disclosure

CVE-2024-0690 MEDIUM

Ansible-core - Info Disclosure

CVE-2024-0987 MEDIUM

Sichuan Yougou Technology KuERP <1.0.4 - Info Disclosure

CVE-2024-22229 LOW

Dell Unity <5.4 - Info Disclosure

CVE-2023-28952 MEDIUM

IBM Cognos Controller <11.0.0 - Command Injection

CVE-2023-39461 MEDIUM

Triangle MicroWorks SCADA Data Gateway - Code Injection

CVE-2023-6484 MEDIUM

Keycloak - Log Injection

CVE-2023-38020 MEDIUM

IBM SOAR QRadar Plugin App <5.0.3 - Info Disclosure

CVE-2023-7234 MEDIUM

OPCUAServerToolkit - Info Disclosure

CVE-2023-46713 MEDIUM

Fortinet FortiWeb <7.4.0 - Info Disclosure

CVE-2023-6002 MEDIUM

Yugabytedb < 2.14.14.0 - XSS

CVE-2023-46322 CRITICAL

iTerm2 <3.5.0beta12 - SSRF

CVE-2023-46321 CRITICAL

iTerm2 <3.5.0beta12 - Path Traversal

CVE-2023-4065 MEDIUM

Red Hat AMQ Broker Operator - Info Disclosure

CVE-2023-4571 HIGH

Splunk IT Service Intelligence <4.13.3, 4.15.3, 4.17.1 - Code Injec...

CVE-2023-3997 HIGH

Splunk SOAR <6.1.0 - Code Injection

CVE-2023-37275 LOW

Auto-GPT <0.4.3 - Info Disclosure

CVE-2023-36924 MEDIUM

SAP ERP Defense Forces and Public Security - Authenticated Privileg...

CVE-2023-31405 MEDIUM

SAP NetWeaver AS for Java - Info Disclosure

CVE-2023-32712 HIGH

Splunk Enterprise <9.1.0.2, <9.0.5.1, <8.2.11.2 - Code Injection

CVE-2023-1711 MEDIUM

FOXMAN-UN - Info Disclosure

CVE-2023-0595 MEDIUM

EcoStruxure Geo SCADA Expert <October 2022 - Info Disclosure

CVE-2022-1522 MEDIUM

Cognex 3D-A1000 Dimensioning System <1.0.3 (3354) - Info Disclosure

Previous Page 3 of 4 Next

Details

Vulnerabilities 93

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy