CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/02/11 8:49 p.m.•2 views

CVE-2020-37104

8.7CVSS5.5AI score0.00565EPSS

CVE•added 2026/02/11 8:49 p.m.•9 views

CVE-2020-37104

CVE-2020-37104 affects ASTPP 4.0.1 and describes an information disclosure where unauthenticated attackers can download database backup files by predicting 6‑digit PINs and fuzzing the backup download URL under /database_backup/. The vulnerability relates to information exposure of sensitive data...

8.7CVSS5.5AI score0.00565EPSS

CNNVD•added 2026/02/11 12:0 a.m.•3 views

ASTPP 安全漏洞

ASTPP is a VoIP billing solution developed by Innextrix Technologies Pvt. Ltd. Version 4.0.1 of ASTPP contains a security vulnerability. This vulnerability stems from information leakage, and it could allow unverified attackers to download database backup files by predicting the file name pattern...

8.7CVSS5.8AI score0.00565EPSS

CNNVD•added 2026/02/11 12:0 a.m.•1 views

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad tablets. Versions of Apple iOS prior to 18.7.5 and Apple iPadOS prior to 18.7.5 contained security vulnerabilities...

5.5CVSS5.8AI score0.00419EPSS

Exploits0References2

Positive Technologies•added 2026/02/11 12:0 a.m.•4 views

PT-2026-7668

8.7CVSS5.5AI score0.00565EPSS

Exploits1References5

RedHat Linux•added 2026/02/09 2:20 p.m.•8 views

Important: Red Hat Security Advisory: Red Hat OpenShift API for Data Protection

A new version of OpenShift API for Data Protection OADP is now available. OpenShift API for Data Protection OADP enables you to back up and restore application resources, persistent volume data, and internal container images to external backup storage. OADP enables both file system-based and...

7.8CVSS7.1AI score0.00526EPSS

Exploits4References6

CNNVD•added 2026/02/07 12:0 a.m.•3 views

ACE SECURITY WiP-90113 访问控制错误漏洞

ACE SECURITY WiP-90113 is a camera product developed by the Japanese company ACE SECURITY. ACE SECURITY WiP-90113 has a vulnerability related to access control. This vulnerability arises from the unprotected configuration of backup endpoints, which may allow unverified attackers to retrieve...

8.7CVSS5.8AI score0.00414EPSS

Exploits0References4

CNNVD•added 2026/02/07 12:0 a.m.•3 views

DBPower C300 HD Camera 访问控制错误漏洞

The DBPower C300 HD Camera is a camera produced by the American company DBPower. The DBPower C300 HD Camera has a access control vulnerability, which stems from unprotected configuration of backup endpoints. This vulnerability may allow unverified attackers to retrieve hardcoded credentials...

8.7CVSS5.8AI score0.004EPSS

Exploits0References4

NVD•added 2026/02/03 10:16 p.m.•2 views

CVE-2020-37082

webERP 4.15.1 contains an unauthenticated file access vulnerability that allows remote attackers to download database backup files without authentication. Attackers can directly access generated backup files in the companies/weberp/ directory by requesting the Backuptimestamp.sql.gz file...

9.8CVSS0.00541EPSS

Cvelist•added 2026/02/03 10:1 p.m.•24 views

CVE-2020-37082 webERP 4.15.1 - Unauthenticated Backup File Access

9.8CVSS0.00541EPSS

ATTACKERKB•added 2026/02/03 10:1 p.m.•1 views

CVE-2020-37082

Vulnrichment•added 2026/02/03 10:1 p.m.•2 views

CVE-2020-37082 webERP 4.15.1 - Unauthenticated Backup File Access

EUVD•added 2026/02/03 10:1 p.m.•2 views

EUVD-2020-30993

CVE•added 2026/02/03 10:1 p.m.•9 views

CVE-2020-37082

Summary: CVE-2020-37082 affects webERP 4.15.1 and describes an unauthenticated backup file access flaw. Attackers can directly request and download generated backup files (Backup_[timestamp].sql.gz) from the companies/weberp/ directory without authentication, enabling remote file retrieval via ne...

CNNVD•added 2026/02/03 12:0 a.m.•2 views

webERP 安全漏洞

webERP is an open-source ERP system developed by Tim Schofield. It supports inventory management, permission role management, order management, and financial management. Version 4.15.1 of webERP contains a security vulnerability caused by an unverified file access flaw. Attackers can directly...

9.8CVSS5.8AI score0.00541EPSS