Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/09/21 12:8 p.m.7 views

CVE-2025-10709

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this issue is some unknown functionality of the file /history/historyDownload.do;otheruserLogin.do;getfile. The manipulation of the argument fileName results in path traversal. The attack can be...

6.9CVSS6.7AI score0.00894EPSS
Exploits1References1
OSV
OSV
added 2025/09/19 12:15 p.m.8 views

CVE-2025-10708

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this vulnerability is an unknown functionality of the file /history/historyDownload.do;usrlogout.do. The manipulation of the argument fileName leads to path traversal. Remote...

7.5CVSS5.4AI score0.00894EPSS
Exploits1References4
OSV
OSV
added 2025/09/19 12:15 p.m.6 views

CVE-2025-10709

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this issue is some unknown functionality of the file /history/historyDownload.do;otheruserLogin.do;getfile. The manipulation of the argument fileName results in path traversal. The attack can be...

7.5CVSS5.5AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/19 12:2 p.m.8 views

CVE-2025-10709 Four-Faith Water Conservancy Informatization Platform historyDownload.do;otheruserLogin.do;getfile path traversal

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this issue is some unknown functionality of the file /history/historyDownload.do;otheruserLogin.do;getfile. The manipulation of the argument fileName results in path traversal. The attack can be...

6.9CVSS5.4AI score0.00894EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/09/19 12:2 p.m.7 views

CVE-2025-10709 Four-Faith Water Conservancy Informatization Platform historyDownload.do;otheruserLogin.do;getfile path traversal

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0. Affected by this issue is some unknown functionality of the file /history/historyDownload.do;otheruserLogin.do;getfile. The manipulation of the argument fileName results in path traversal. The attack can be...

6.9CVSS0.00894EPSS
Exploits1References4
CVE
CVE
added 2025/09/19 12:2 p.m.14 views

CVE-2025-10709

CVE-2025-10709 affects Four-Faith Water Conservancy Informatization Platform 1.0. The vulnerability resides in path traversal via the fileName parameter in the files /history/historyDownload.do, /otheruserLogin.do, and /getfile. It can be exploited remotely, and public exploitation information ex...

7.5CVSS5.5AI score0.00894EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/19 12:0 a.m.7 views

PT-2025-38526

Name of the Vulnerable Software and Affected Versions Four-Faith Water Conservancy Informatization Platform version 1.0 Description A security vulnerability has been detected due to path traversal. The manipulation of the argument fileName in an unknown functionality of the file...

6.9CVSS5.5AI score0.00894EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/09/19 12:0 a.m.4 views

Four-Faith Water Conservancy Informatization 安全漏洞

Four-Faith Water Conservancy Informatization is a water conservancy informatization system from China Four-Faith Four-Faith. A security vulnerability exists in Four-Faith Water Conservancy Informatization version 1.0, which stems from an incorrect manipulation of the parameter fileName in the fil...

7.5CVSS5.8AI score0.00894EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/09/19 12:0 a.m.3 views

Four-Faith Water Conservancy Informatization 安全漏洞

Four-Faith Water Conservancy Informatization is a water conservancy informatization system from China Four-Faith Four-Faith. A security vulnerability exists in Four-Faith Water Conservancy Informatization version 1.0, which stems from an incorrect manipulation of the parameter fileName in the fil...

7.5CVSS5.8AI score0.00894EPSS
Exploits1References5
OSV
OSV
added 2022/12/21 11:15 p.m.4 views

CVE-2022-3188

Dataprobe iBoot-PDU FW versions prior to 1.42.06162022 contain a vulnerability where unauthenticated users could open PHP index pages without authentication and download the history file from the device; the history file includes the latest actions completed by specific users...

5.3CVSS5.8AI score0.00516EPSS
Exploits0References1
Rows per page
Query Builder