This page collects WhisperX intelligence signals tagged #data-leak. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A critical data leakage vulnerability in the widely-used Python machine learning library scikit-learn has been patched, exposing sensitive information from training datasets. The flaw, tracked as CVE-2024-5206, was present in the TfidfVectorizer component in all versions up to and including 1.4.1.post1. The security fi...
A critical data enumeration vulnerability has been identified in the `MosaicController.SaveMosaic` method. The flaw, located at line 192 of `Controllers/MosaicController.cs`, returns a bare `Forbid()` response when an `UnauthorizedAccessException` is thrown. This response is issued regardless of whether the caller is a...
A critical security flaw has been flagged in the widely used `follow-redirects` npm package, posing a medium-severity risk of leaking sensitive authorization headers. The vulnerability triggers when the package automatically follows HTTP redirects to a different host, inadvertently exposing authentication tokens and cr...