CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34550 – WordPress Dynamics 365 Integration plugin <= 1.3.17 - Sensitive Data Exposure vulnerability
https://notcve.org/view.php?id=CVE-2024-34550
Insertion of Sensitive Information into Log File vulnerability in AlexaCRM Dynamics 365 Integration.This issue affects Dynamics 365 Integration: from n/a through 1.3.17. Inserción de información confidencial en la vulnerabilidad del archivo de registro en la integración de AlexaCRM Dynamics 365. Este problema afecta la integración de Dynamics 365: desde n/a hasta 1.3.17. The Dynamics 365 Integration plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.17 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the exposed log files. • https://patchstack.com/database/vulnerability/integration-dynamics/wordpress-dynamics-365-integration-plugin-1-3-17-sensitive-data-exposure-vulnerability? • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2023-43528 – Buffer Over-read in Audio
https://notcve.org/view.php?id=CVE-2023-43528
Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-43527 – Buffer Over-read in Video
https://notcve.org/view.php?id=CVE-2023-43527
Information disclosure while parsing dts header atom in Video. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20058
https://notcve.org/view.php?id=CVE-2024-20058
This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/May-2024 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-34388 – WordPress GDPR Compliance plugin <= 1.2.5 - Sensitive Data Exposure vulnerability
https://notcve.org/view.php?id=CVE-2024-34388
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Scribit GDPR Compliance.This issue affects GDPR Compliance: from n/a through 1.2.5. Exposición de información confidencial a una vulnerabilidad de actor no autorizado en el cumplimiento del RGPD de Scribit. Este problema afecta el cumplimiento del RGPD: desde n/a hasta 1.2.5. The GDPR Compliance plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.2.5. This makes it possible for authenticated attackers, with subscriber-level access and above, to extract sensitive user or configuration data. • https://patchstack.com/database/vulnerability/gdpr-compliance/wordpress-gdpr-compliance-plugin-1-2-5-sensitive-data-exposure-vulnerability? • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •