CVE-2020-36895

EIBIZ i-Media Server Digital Signage 3.8.0 contains an unauthenticated configuration disclosure vulnerability that allows remote attackers to access sensitive configuration files via direct object reference. Attackers can retrieve the SiteConfig.properties file through an HTTP GET request, exposi...

CVE-2025-29992

Mahara before 24.04.9 exposes database connection information if the database becomes unreachable, e.g., due to the database server being temporarily down or too busy...

CVE-2023-38547

A vulnerability in Veeam ONE allows an unauthenticated user to gain information about the SQL server connection Veeam ONE uses to access its configuration database. This may lead to remote code execution on the SQL server hosting the Veeam ONE configuration database...

CVE-2022-47874

CVE-2022-47874 affects Jedox 2020.2.5, via improper access control in the /tc/rpc endpoint. The vulnerability allows remote authenticated users to view details of database connections through class com.jedox.etl.mngr.Connections.getGlobalConnection. Publicly documented PoCs and write-ups describe...

56iq digital signage software frontend database has information leakage vulnerability

56iq digital signage software is a digital signage content creation software, used to create exciting programs in plasma liquid crystal LCD flat-panel TVs, LED screens, projection equipment and other multimedia terminals playback and touch interactive applications. There is an information leakage...