Sensitive Information Leakage in Logstash Elasticsearch Output Plugin

CVE-2016-1000221

Logstash prior to version 2.3.4, Elasticsearch Output plugin would log to file HTTP authorization headers which could contain sensitive information.

Learn more about our Web Application Penetration Testing UK.