Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Quay/config-tool: quay/config-tool: gitlab oauth client_secret exposed in url querystring
Portainer: JWT accepted in URL query leaks tokens to logs and referers
A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1
HCL AION is affected by a vulnerability where sensitive information may be included in URL parameters.
WWBN AVideo: Password Hash Leaked in MobileManager OAuth Redirect URL Enables Account Takeover
Apache OpenMeetings: Login Credentials Passed via GET Query Parameters
Plane Exposes User Email (PII and part of credential) in GET Parameter
Nhost Leaks the Refresh Token via URL Query Parameter in OAuth Provider Callback
immich-server: Insecure Transmission of Authentication Credentials via Password Parameter in HTTP Request Query String When Accessing Shared Albums
PinchTab: API Bearer Token Exposed in URL Query Parameter via Server Logs and Intermediary Systems
IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information
Gainsight Assist plugin information disclosure
IBM Sterling Partner Engagement Manager Information Disclosure
Multiple vulnerabilities in IBM Aspera Orchestrator
wwwupdate.cgi Session token in URL
Gogs: Access tokens get exposed through URL params in API requests
Tugtainer vulnerable to Password Exposure via URL Query Parameter
Certain requests pass the authentication token in the URL as string query parameter, making it vulnerable to theft through server logs, proxy logs ...
Spectrum session token in URL
IBM i Information Disclosure
Showing 1 - 20 of 1,000+ results