Searchblox : Security Vulnerabilities, CVEs, (Information Leak)
SearchBlox before 8.2 allows remote attackers to obtain sensitive information via a pretty=true action to the _cluster/health URI.
Max CVSS
5.0
EPSS Score
0.83%
Published
2015-04-18
Updated
2015-04-20
servlet/CollectionListServlet in SearchBlox before 7.5 build 1 allows remote attackers to read usernames and passwords via a getList action.
Max CVSS
5.0
EPSS Score
1.86%
Published
2013-08-28
Updated
2013-09-05
2 vulnerabilities found