Show CWE-598: Information Exposure Through Query Strings in GET Request - CXSecurity.com

	Topic	Date	Author
Med.	Micro Focus GroupWise Session ID Disclosure	28.01.2023	Stefan Pietsch
Low	EQS Integrity Line Cross Site Scripting / Information Disclosure	06.07.2022	Giovanni Pellerano
Low	Encore Discovery Solution 4.3 Open Redirect / Session Token In URL	28.08.2014	CAaNES
Med.	SilverStripe CMS 3.0.3 Information Disclosure	02.08.2013	Fara Rustein

CVEMAP Search Results

CVE

Details

Description

2024-03-13

Waiting for details

CVE-2023-32335

Updating...

IBM Maximo Application Suite 8.10, 8.11 and IBM Maximo Asset Management 7.6.1.3 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 255075.

2024-02-02

Waiting for details

CVE-2023-50328

Updating...

IBM PowerSC 1.3, 2.0, and 2.1 may allow a remote attacker to view session identifiers passed via URL query strings. IBM X-Force ID: 275110.

Copyright 2024, cxsecurity.com