OSVDB-118830: Sensitive information in production logs

February 10, 2015

The program stores sensitive information in production logs. This may allow a local attacker to gain access to sensitive information.

References

www.osvdb.com/show/osvdb/118830
github.com/apsoto/doorkeeper/commit/ff434bb8fc49e132bff4d0f974ee0c1a8a69c143
github.com/doorkeeper-gem/doorkeeper/commit/d6bca5f32b741b8cee83a4aeb818338b919181fe
github.com/doorkeeper-gem/doorkeeper/issues/576

Detect and mitigate OSVDB-118830 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →