CVE-2026-22478

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes FindAll findall allows PHP Local File Inclusion.This issue affects FindAll: from n/a through = 1.4...

CVE-2026-22478

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Elated-Themes FindAll findall allows PHP Local File Inclusion.This issue affects FindAll: from n/a through = 1.4...

CVE-2026-22478

CVE-2026-22478 affects the WordPress theme FindAll (

Dell Storage Manager XXE (CVE-2025-22478)

Binary data dellstoragemanagercve-2025-22478.nbin...

CVE-2025-22478

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Restriction of XML External Entity Reference vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure and Information...

CVE-2025-22478

creationtimestamp| type| source ---|---|--- 2025-05-06 16:21:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15155 2025-05-06 18:30:31+00:00| seen| Telegram/GauoNXPt9XP7CBkSjGkMsiaSDY8cQHafAnFJBcE1wEqMBM 2025-05-06 20:20:35+00:00| seen| https://t.me/cvedetector/24639...

CVE-2025-22478

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Restriction of XML External Entity Reference vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure and Information...

CVE-2025-22478

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Restriction of XML External Entity Reference vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure and Information...

CVE-2025-22478

Dell Storage Center - Dell Storage Manager, versions 20.1.20, contains an Improper Restriction of XML External Entity Reference vulnerability. An unauthenticated attacker with adjacent network access could potentially exploit this vulnerability, leading to Information disclosure and Information...

CVE-2023-22478

creationtimestamp| type| source ---|---|--- 2024-11-12 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-12 2024-11-18 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-18 2024-11-19 00:00:00+00:00| exploited| The...

CVE-2023-22478

CVE-2023-22478 affects KubePi up to version 1.6.4, enabling unauthorized API access that can expose sensitive information. The issue is publicly documented across multiple sources (NVD, NVD-derived feeds, and project advisories) and has a confirmed patch in version 1.6.4. All connected sources de...

CVE-2023-22478 KubePi is vulnerable to missing authorization

KubePi is a modern Kubernetes panel. The API interfaces with unauthorized entities and may leak sensitive information. This issue has been patched in version 1.6.4. There are currently no known workarounds...

Duplicate of ./go/github.com/KubeOperator/KubePi/CVE-2023-22478.yml

API interfaces with unauthorized access will leak sensitive information via /kubepi/api/v1/systems/operation/logs/search and /kubepi/api/v1/systems/login/logs/search...

CVE-2022-22478

creationtimestamp| type| source ---|---|--- 2022-06-30 20:38:52+00:00| seen| https://t.me/cibsecurity/45424...

CVE-2021-22478

The interface of a certain HarmonyOS module has a UAF vulnerability. Successful exploitation of this vulnerability may lead to information leakage...

CVE-2021-22478

CVE-2021-22478 concerns a vulnerability in the HarmonyOS interface of a module that enables use-after-free (UAF) conditions. The issue may allow information leakage (confidentiality impact) and is described with a Local, Low-Privilege, Low-Complexity attack vector (no user interaction) and High C...