Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2024-40596 MEDIUM

MediaWiki <1.42.1 - Info Disclosure

CVE-2024-32757 MEDIUM

American Dynamics Illustra Essentials Gen 4 < Illustra.Ess4.01.02.10.5982 - Sensitive Information Exposure in Log Files

CVE-2024-22276 MEDIUM

VMware Cloud Director - Info Disclosure

CVE-2024-39460 MEDIUM

Jenkins Bitbucket Branch Source Plugin <= 886.v44cf5e4ecec5 - Sensitive Information Exposure in Build Log

CVE-2024-28830 LOW

Checkmk <2.3.0p7, <2.2.0p28, <2.1.0p45, <=2.0.0p39 - Sensitive Information Disclosure in Audit Log Files

CVE-2024-29177 LOW

Dell PowerProtect DD <8.0 - Info Disclosure

CVE-2024-29954 MEDIUM

Brocade Fabric OS <9.2.1-8.2.3e - Info Disclosure

CVE-2024-6060 CRITICAL

Phloc Webscopes 7.0.0 - Info Disclosure

CVE-2024-6104 MEDIUM

go-retryablehttp < 0.7.7 - Sensitive Information Disclosure via Log File

CVE-2024-38460 MEDIUM

SonarQube <10.4, 9.9.4 - Info Disclosure

CVE-2024-27157 MEDIUM

Toshiba Tec e-Studio MFP - Clear-Text Session Information Disclosure

CVE-2024-27156 MEDIUM

Toshiba Tec e-Studio MFP - Sensitive Information Exposure via Clear-Text Session Cookie Logging

CVE-2024-27154 MEDIUM

Toshiba Tec e-Studio MFP - Clear-Text Password Exposure in Log Files

CVE-2024-5908 HIGH

GlobalProtect 5.1-5.1.11 - Sensitive Information Exposure in Application Logs

CVE-2024-5557 MEDIUM

Schneider Electric SpaceLogic AS-B and AS-P Firmware < 6.0.1 - Sensitive Information Exposure via Log File

CVE-2024-32811 MEDIUM

Octolize USPS Shipping <1.9.4 - Info Disclosure

CVE-2024-0912 MEDIUM

Johnson Controls Software House CCURE 9000 SiteServer - Sensitive Information Disclosure in IIS Logs

CVE-2024-25095 HIGH

Code Parrots Easy Forms for Mailchimp <6.9.0 - Info Disclosure

CVE-2024-36127 HIGH

apko < 0.14.5 - Insufficiently Protected Credentials via Log Output

CVE-2024-34798 MEDIUM

Lukman Nakib Debug Log - Info Disclosure

CVE-2024-35196 LOW

Sentry 24.3.0-24.5.0 - Sensitive Information Exposure in Slack Integration Logs

CVE-2024-34715 LOW

Fides < 2.37.0 - Sensitive Information Exposure in Database Password Logs

CVE-2024-31216 MEDIUM

fluxcd source-controller < 1.2.5 - Sensitive Information Disclosure in Log Files

CVE-2024-3744 MEDIUM

azurefile-csi-driver < 1.29.4 - Sensitive Information Exposure in Log Files

CVE-2024-34706 CRITICAL

Valtimo < 10.8.4, 11.0.0-11.1.5, 11.2.0-11.2.1 - Sensitive Information Exposure via Form.io JWT Token

Previous Page 15 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy