Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1501 matches found

NVD
NVDadded 2024/05/03 2:15 a.m.9 views

CVE-2023-32164

D-Link D-View TftpSendFileThread Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of D-Link D-View. Authentication is not required to exploit this vulnerability. The specific flaw exist...

7.5CVSS7.2AI score0.35134EPSS
Exploits0References2
NVD
NVDadded 2024/05/03 2:15 a.m.14 views

CVE-2023-32167

D-Link D-View uploadMib Directory Traversal Arbitrary File Creation or Deletion Vulnerability. This vulnerability allows remote attackers to create and delete arbitrary files on affected installations of D-Link D-View. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS6.5AI score0.5585EPSS
Exploits0References2
NVD
NVDadded 2024/05/03 2:15 a.m.12 views

CVE-2023-27326

Parallels Desktop Toolgate Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop. An attacker must first obtain the ability to execute high-privileged code on the target guest...

8.2CVSS8.3AI score0.01727EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/05/03 2:14 a.m.11 views

CVE-2023-50233 Inductive Automation Ignition getJavaExecutable Directory Traversal Remote Code Execution Vulnerability

Inductive Automation Ignition getJavaExecutable Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Inductive Automation Ignition. User interaction is required to exploit this vulnerability in...

8.8CVSS9.2AI score0.03655EPSS
Exploits0References2
CVE
CVEadded 2024/05/03 2:14 a.m.56 views

CVE-2023-50233

CVE-2023-50233 concerns Inductive Automation Ignition, specifically the getJavaExecutable directory traversal vulnerability. The flaw stems from inadequate validation of a user-supplied path before performing file operations, enabling an attacker to execute arbitrary code in the context of the cu...

8.8CVSS8.9AI score0.03655EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:14 a.m.15 views

CVE-2023-44451 Linux Mint Xreader EPUB File Parsing Directory Traversal Remote Code Execution Vulnerability

Linux Mint Xreader EPUB File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Linux Mint Xreader. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS7.4AI score0.48698EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/05/03 2:14 a.m.20 views

CVE-2023-44451 Linux Mint Xreader EPUB File Parsing Directory Traversal Remote Code Execution Vulnerability

Linux Mint Xreader EPUB File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Linux Mint Xreader. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS8.2AI score0.48698EPSS
Exploits1References2
CVE
CVEadded 2024/05/03 2:13 a.m.45 views

CVE-2023-42129

CVE-2023-42129 affects A10 Networks’ Thunder ADC ; the vulnerability is in the ShowTechDownloadView class, caused by a lack of validation for a user-supplied path used in file operations. This directory traversal could allow an attacker to disclose sensitive information with authentication requir...

6.5CVSS6.1AI score0.04392EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:13 a.m.16 views

CVE-2023-42129 A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability

A10 Thunder ADC ShowTechDownloadView Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of A10 Thunder ADC. Authentication is required to exploit this vulnerability. The specific flaw...

6.5CVSS6.1AI score0.04392EPSS
Exploits1References2
CVE
CVEadded 2024/05/03 2:12 a.m.49 views

CVE-2023-42033

Visualware MyConnection Server is affected by CVE-2023-42033 via the doPostUploadfiles directory traversal, allowing remote code execution with root context. The flaw is due to insufficient validation of a user-supplied path before file operations. Exploitation requires authentication, but authen...

7.2CVSS7.5AI score0.01606EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/05/03 2:11 a.m.14 views

CVE-2023-40517 LG SuperSign Media Editor ContentRestController getObject Directory Traversal Information Disclosure Vulnerability

LG SuperSign Media Editor ContentRestController getObject Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG SuperSign Media Editor. Authentication is not required to exploit this...

7.5CVSS7.4AI score0.0125EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:11 a.m.10 views

CVE-2023-41181 LG SuperSign Media Editor getSubFolderList Directory Traversal Information Disclosure Vulnerability

LG SuperSign Media Editor getSubFolderList Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG SuperSign Media Editor. Authentication is not required to exploit this vulnerability. T...

5.3CVSS6AI score0.00941EPSS
Exploits0References1
CVE
CVEadded 2024/05/03 2:11 a.m.48 views

CVE-2023-40517

The CVE-2023-40517 issue affects LG SuperSign Media Editor, specifically the ContentRestController.getObject method. It stems from insufficient validation of a user-supplied path used in file operations, enabling directory traversal to disclose sensitive information in the SYSTEM context. Public ...

7.5CVSS7.1AI score0.0125EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2024/05/03 2:11 a.m.48 views

CVE-2023-41181

LG SuperSign Media Editor is affected by a Directory Traversal Information Disclosure vulnerability in the getSubFolderList method. The issue stems from insufficient validation of a user-supplied path before using it in file operations, allowing an attacker to disclose sensitive information with ...

5.3CVSS4.9AI score0.00941EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:11 a.m.25 views

CVE-2023-40513 LG Simple Editor UserManageController getImageByFilename Directory Traversal Information Disclosure Vulnerability

LG Simple Editor UserManageController getImageByFilename Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Although authentication is required to exploit this...

6.5CVSS6.2AI score0.00159EPSS
Exploits0References1
CVE
CVEadded 2024/05/03 2:11 a.m.53 views

CVE-2023-40513

CVE-2023-40513 – LG Simple Editor : The issue affects LG Simple Editor’s UserManageController.getImageByFilename, caused by insufficient validation of a user-supplied path before file operations. This directory-traversal leads to information disclosure under SYSTEM context. The vulnerability is p...

6.5CVSS6.2AI score0.00159EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2024/05/03 2:11 a.m.22 views

CVE-2023-40513 LG Simple Editor UserManageController getImageByFilename Directory Traversal Information Disclosure Vulnerability

LG Simple Editor UserManageController getImageByFilename Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of LG Simple Editor. Although authentication is required to exploit this...

6.5CVSS6.4AI score0.00159EPSS
Exploits0References1
CVE
CVEadded 2024/05/03 2:11 a.m.41 views

CVE-2023-40514

The CVE-2023-40514 issue affects LG Simple Editor, specifically the FileManagerController.getImageByFilename method, where a lack of validation for a user-supplied path enables directory traversal information disclosure. The vulnerability allows remote attackers to disclose sensitive information ...

6.5CVSS6.2AI score0.00159EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2024/05/03 2:11 a.m.46 views

CVE-2023-40512

LG Simple Editor’s CVE-2023-40512 affects the PlayerController.getImageByFilename method, where lack of validation of a user-supplied path enables directory traversal to disclose sensitive information. The vulnerability allows remote attackers to access information in the context of SYSTEM, with ...

6.5CVSS6.2AI score0.00159EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/05/03 2:11 a.m.17 views

CVE-2023-40509 LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability

LG Simple Editor deleteCanvas Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists withi...

8.2CVSS8.2AI score0.01912EPSS
Exploits0References1
Rows per page
Query Builder