What the vulnerability does
01Description
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository hamza417/inure prior to build92.
CVE-2023-4877
MEDIUM
CVE-2023-4877: Exposure of Sensitive Information to an Unauthorized Actor in hamza417/inure
CVSS base score
5.5/10
CVSS vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Key dates
02Disclosure timeline
September 10, 2023
CVE published
September 26, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-2446 UserPro <= 5.1.1 - Sensitive Information Disclosure via Shortcode
CVE-2025-26795 Apache IoTDB JDBC driver: Exposure of Sensitive Information in IoTDB JDBC driver
CVE-2023-37939
CVE-2026-5585 Tencent AI-Infra-Guard Task Detail Endpoint task_manager.go information disclosure
CVE-2025-57756 Contao discloses sensitive information in the front end search index
