CVE-2026-29184— @backstage/plugin-scaffolder-backend: Potential Session Token Exfiltration via Log Redaction Bypass
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-29184
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
@backstage/plugin-scaffolder-backend: Potential Session Token Exfiltration via Log Redaction Bypass
Source: NVD (National Vulnerability Database)
Vulnerability Description
Backstage is an open framework for building developer portals. Prior to version 3.1.4, a malicious scaffolder template can bypass the log redaction mechanism to exfiltrate secrets provided run through task event logs. This issue has been patched in version 3.1.4.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
通过日志文件的信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
Backstage 日志信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Backstage是Backstage开源的一个应用软件。后台是一个开放的平台,用于构建开发者门户。 Backstage 3.1.4之前版本存在日志信息泄露漏洞,该漏洞源于恶意脚手架模板可绕过日志编辑机制,可能导致通过任务事件日志泄露秘密。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-29184
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-29184
请登录查看更多情报信息。
Same Patch Batch · backstage · 2026-03-07 · 3 CVEs total
| CVE-2026-29186 | 7.7 HIGH | @backstage/plugin-techdocs-node: TechDocs Mkdocs Configuration Key Enables Arbitrary Code |
| CVE-2026-29185 | 2.7 LOW | @backstage/integration: Potential reading of SCM URLs using built in token |
IV. Related Vulnerabilities
Same product: backstage
- CVE-2026-29186
@backstage/plugin-techdocs-node: TechDocs Mkdocs Configurati - CVE-2026-29185
@backstage/integration: Potential reading of SCM URLs using - CVE-2026-25152
@backstage/plugin-techdocs-node vulnerable to possible Path - CVE-2026-25153
@backstage/plugin-techdocs-node vulnerable to arbitrary code - CVE-2026-24048
Backstage has a Possible SSRF when reading from allowed URL'
Same vendor: backstage
- CVE-2026-29186
@backstage/plugin-techdocs-node: TechDocs Mkdocs Configurati - CVE-2026-29185
@backstage/integration: Potential reading of SCM URLs using - CVE-2026-25152
@backstage/plugin-techdocs-node vulnerable to possible Path - CVE-2026-25153
@backstage/plugin-techdocs-node vulnerable to arbitrary code - CVE-2026-24048
Backstage has a Possible SSRF when reading from allowed URL'
Same weakness: CWE-532
- CVE-2026-42282
n8n-MCP: Sensitive MCP tool-call arguments logged on authent - CVE-2026-41495
n8n-MCP Logs Sensitive Request Data on Unauthorized /mcp Req - CVE-2026-41004
VMware Spring Cloud Config 日志信息泄露漏洞 - CVE-2024-30151
HCL BigFix Service Management (SM) is susceptible to Broken - CVE-2026-7824
PaperCut Hive (Ricoh): Plain text password in logs
V. Comments for CVE-2026-29184
No comments yet