Products
Phloc Webscopes
- 7.0.0
Source
103e4ec9-0a87-450b-af77-479448ddef11
Tags
CVE-2024-6060 details
Published : June 25, 2024, 10:15 p.m.
Last Modified : June 25, 2024, 10:15 p.m.
Last Modified : June 25, 2024, 10:15 p.m.
Description
An information disclosure vulnerability in Phloc Webscopes 7.0.0 allows local attackers with access to the log files to view logged HTTP requests that contain user passwords or other sensitive information.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|---|---|
| CWE-532 | Insertion of Sensitive Information into Log File | Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information. |
References
| URL | Source |
|---|---|
| https://sites.google.com/sonatype.com/vulnerabilities/cve-2024-6060 | 103e4ec9-0a87-450b-af77-479448ddef11 |
This website uses the NVD API, but is not approved or certified by it.