Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-532

CWE-532

Medium likelihood

Insertion of Sensitive Information into Log File

Parent: CWE-538 - Insertion of Sensitive Information into Externally-Accessible File or Directory

The product writes sensitive information to a log file.

1,137 vulnerabilities with CWE-532

CVE-2024-31247 MEDIUM

Frdric GILLES FG Drupal to WordPress <= 3.70.3 - Sensitive Data Exposure via Log File

CVE-2024-31245 MEDIUM

ConvertKit < 2.4.5 - Sensitive Information Disclosure in Log File

CVE-2024-2302 MEDIUM

Easy Digital Downloads < 3.2.10 - Unauthenticated Sensitive Information Exposure via Debug Log Directory Listing

CVE-2024-25030 MEDIUM

IBM Db2 - Sensitive Information Exposure in Log Files

CVE-2024-3165 MEDIUM

dotcms 22.02-22.03.15 - Authenticated Sensitive Information Exposure in Log Files

CVE-2024-30523 MEDIUM

Paid Memberships Pro - Mailchimp Add On <2.3.4 - Info Disclosure

CVE-2024-30514 MEDIUM

Paid Memberships Pro - Payfast Gateway Add On <1.4.1 - Info Disclosure

CVE-2024-30511 MEDIUM

FG PrestaShop to WooCommerce <4.45.1 - Info Disclosure

CVE-2024-25959 HIGH

Dell PowerScale OneFS 9.4.0.x-9.7.0.x - Sensitive Information Disclosure via Log File Insertion

CVE-2024-25923 MEDIUM

PeepSo Community <6.2.7.0 - Info Disclosure

CVE-2024-22138 MEDIUM

Seraphinite Accelerator <2.20.47 - Info Disclosure

CVE-2024-29945 HIGH

Splunk Enterprise <9.2.1-9.0.9 - Info Disclosure

CVE-2024-25957 MEDIUM

Dell Grab < 5.0.5 - Authenticated Sensitive Information Disclosure in Appsync Module

CVE-2024-24272 HIGH

iTop DualSafe Password Manager < 1.4.24 - Sensitive Information Exposure via Log File

CVE-2024-22352 MEDIUM

IBM InfoSphere Information Server 11.7 - Info Disclosure

CVE-2024-25654 MEDIUM

AVSystem Unified Management Platform 23.07.0.16567~LTS - Sensitive Information Exposure via Log File Permissions

CVE-2024-27097 MEDIUM

CKAN <2.9.11, <2.10.4 - Info Disclosure

CVE-2024-28236 HIGH

go-vela/worker < 0.23.2 - Sensitive Information Exposure via Log Masking Bypass

CVE-2024-28186 HIGH

freescout < 1.8.124 - Sensitive Information Disclosure via Conversation Send Log Endpoint

CVE-2024-23242 LOW

iPadOS < 17.4, iPhoneOS < 17.4, macOS 14.0-14.4 - Unprotected User Data Exposure via Mail Log

CVE-2024-28154 MEDIUM

Jenkins MQ Notifier Plugin < 1.4.1 - Sensitive Information Exposure in Build Logs

CVE-2024-23758 HIGH

Unisys Stealth 5.3.062.0 - Sensitive Information Exposure via Enterprise Management Installer Log

CVE-2024-22337 MEDIUM

IBM QRadar Suite <1.10.17.0 - Info Disclosure

CVE-2024-22336 MEDIUM

IBM QRadar Suite <1.10.17.0 - Info Disclosure

CVE-2024-22335 MEDIUM

IBM Cloud Pak for Security 1.10.0.0-1.10.11.0 & QRadar Suite 1.10.12.0-1.10.17.0 - Sensitive Info Disclosure in Logs

Previous Page 17 of 46 Next

Details

Vulnerabilities 1,137

Exploit Likelihood Medium

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy