CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7411 – Newsletters <= 4.9.9 - Unauthenticated Full Path Disclosure
https://notcve.org/view.php?id=CVE-2024-7411
The Newsletters plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 4.9.9. ... The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website. • https://plugins.trac.wordpress.org/browser/newsletters-lite/trunk/vendor/mobiledetect/mobiledetectlib/export/exportToJSON.php https://plugins.trac.wordpress.org/changeset/3135786 https://www.wordfence.com/threat-intel/vulnerabilities/id/3cbf52b0-4c7f-40fb-aedb-4c70f6510b1b?source=cve • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-50314 – IBM WebSphere Application Server Libery information disclosure
https://notcve.org/view.php?id=CVE-2023-50314
An attacker could exploit this vulnerability using a certificate issued by a trusted authority to obtain sensitive information. • https://exchange.xforce.ibmcloud.com/vulnerabilities/274713 https://www.ibm.com/support/pages/node/7165502 • CWE-295: Improper Certificate Validation •
CVSS: 5.3EPSS: 0%CPEs: -EXPL: 0CVE-2023-50315 – IBM WebSphere Application Server information disclosure
https://notcve.org/view.php?id=CVE-2023-50315
An attacker could exploit this vulnerability using a certificate issued by a trusted authority to obtain sensitive information. • https://exchange.xforce.ibmcloud.com/vulnerabilities/274714 https://www.ibm.com/support/pages/node/7165511 • CWE-295: Improper Certificate Validation •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42435 – Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information Exposure
https://notcve.org/view.php?id=CVE-2024-42435
Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24030 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2024-42434 – Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers - Sensitive Information Exposure
https://notcve.org/view.php?id=CVE-2024-42434
Sensitive information disclosure in some Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers may allow a privileged user to conduct an information disclosure via network access. • https://www.zoom.com/en/trust/security-bulletin/zsb-24030 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •