Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2019-1010308
- EPSS 0.31%
- Published 15.07.2019 18:15:12
- Last modified 21.11.2024 04:18:09
Aquaverde GmbH Aquarius CMS prior to version 4.1.1 is affected by: Incorrect Access Control. The impact is: The access to the log file is not restricted. It contains sensitive information like passwords etc. The component is: log file. The attack vec...
7.5
CVE-2019-9734
- EPSS 0.32%
- Published 24.04.2019 15:29:02
- Last modified 21.11.2024 04:52:11
Aquarius CMS through 4.3.5 writes POST and GET parameters (including passwords) to a log file due to an overwriting of configuration parameters under certain circumstances.
7.5
CVE-2019-9724
- EPSS 0.33%
- Published 24.04.2019 14:29:00
- Last modified 21.11.2024 04:52:10
aquaverde Aquarius CMS through 4.3.5 allows Information Exposure through Log Files because of an error in the Log-File writer component.
1