Lucene search
K

52 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:25 a.m.10 views

CVE-2024-0411

A vulnerability was found in DeShang DSMall up to 6.1.0. It has been classified as problematic. This affects an unknown part of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls. It is possible to initiate the attack remotely...

7.5CVSS7.7AI score0.02211EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:24 a.m.7 views

CVE-2024-0695

A vulnerability, which was classified as problematic, has been found in EFS Easy Chat Server 3.1. Affected by this issue is some unknown functionality of the component HTTP GET Request Handler. The manipulation of the argument USERNAME leads to denial of service. The attack may be launched...

5.3CVSS6.8AI score0.00969EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:23 a.m.7 views

CVE-2024-10916

A vulnerability classified as problematic has been found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. This affects an unknown part of the file /xml/info.xml of the component HTTP GET Request Handler. The manipulation leads to information disclosure. It is possible to initiat...

6.9CVSS5.2AI score0.01464EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/10 6:10 a.m.6 views

CVE-2025-3405

A vulnerability was found in FCJ Venture Builder appclientefiel 3.0.27. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /rest/cliente/ObterPedido/ of the component HTTP GET Request Handler. The manipulation of the argument ORDERID leads ...

5.3CVSS7AI score0.00323EPSS
Exploits0References1
NVD
NVD
added 2025/04/08 4:15 a.m.6 views

CVE-2025-3405

A vulnerability was found in FCJ Venture Builder appclientefiel 3.0.27. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /rest/cliente/ObterPedido/ of the component HTTP GET Request Handler. The manipulation of the argument ORDERID leads ...

5.3CVSS0.00323EPSS
Exploits0References4
NVD
NVD
added 2025/02/16 7:15 p.m.13 views

CVE-2025-1357

A vulnerability classified as problematic has been found in Seventh D-Guard up to 20250206. This affects an unknown part of the component HTTP GET Request Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the publi...

5.3CVSS0.00435EPSS
Exploits0References3
CVE
CVE
added 2025/02/16 6:31 p.m.75 views

CVE-2025-1357

CVE-2025-1357 is tied to Seventh D-Guard’s HTTP GET Request Handler path traversal vulnerability affecting versions up to 20250206. The issue allows remote initiation and has public exploit exposure; multiple sources corroborate the path traversal in the HTTP GET Request Handler component. Red Ha...

5.3CVSS4.7AI score0.00435EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/09 6:22 p.m.18 views

CVE-2025-1105

A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /app/sae/design/desktop/flat of the component HTTP GET Request Handler. The manipulation leads to cross site scripting. The attack may be launched...

5.3CVSS6AI score0.00363EPSS
Exploits0References1
NVD
NVD
added 2025/02/07 6:15 p.m.36 views

CVE-2025-1105

A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /app/sae/design/desktop/flat of the component HTTP GET Request Handler. The manipulation leads to cross site scripting. The attack may be launched...

6.1CVSS0.00363EPSS
Exploits0References3
CVE
CVE
added 2025/02/07 6:0 p.m.60 views

CVE-2025-1105

SiberianCMS 4.20.6 is affected by CVE-2025-1105 due to an issue in the HTTP GET Request Handler: the file /app/sae/design/desktop/flat can be manipulated to trigger cross-site scripting. The vulnerability arises from an unknown functionality in that handler, with remote exploitation and public di...

6.1CVSS6AI score0.00363EPSS
Exploits0References3Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 5:24 a.m.13 views

CVE-2024-1197

A vulnerability, which was classified as critical, has been found in SourceCodester Testimonial Page Manager 1.0. This issue affects some unknown processing of the file delete-testimonial.php of the component HTTP GET Request Handler. The manipulation of the argument testimony leads to sql...

9.8CVSS7.5AI score0.00594EPSS
Exploits0References1
CVE
CVE
added 2024/11/06 3:0 p.m.61 views

CVE-2024-10916

CVE-2024-10916 affects D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. The issue resides in the HTTP GET Request Handler’s /xml/info.xml, where an improper handling allows remote information disclosure. Public exploit information exists, enabling remote initiation without user int...

6.9CVSS5.1AI score0.01464EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2024/07/15 12:15 p.m.10 views

CVE-2024-6746

A vulnerability classified as problematic was found in NaiboWang EasySpider 0.6.2 on Windows. Affected by this vulnerability is an unknown functionality of the file \EasySpider\resources\app\server.js of the component HTTP GET Request Handler. The manipulation with the input...

8.8CVSS6.8AI score
Exploits0References4
NVD
NVD
added 2024/07/15 12:15 p.m.25 views

CVE-2024-6746

A vulnerability classified as problematic was found in NaiboWang EasySpider 0.6.2 on Windows. Affected by this vulnerability is an unknown functionality of the file \EasySpider\resources\app\server.js of the component HTTP GET Request Handler. The manipulation with the input...

8.8CVSS0.03333EPSS
Exploits1References4
CVE
CVE
added 2024/07/15 12:0 p.m.72 views

CVE-2024-6746

NaiboWang EasySpider 0.6.2 on Windows has a path-traversal vulnerability in the HTTP GET Request Handler (server.js) that allows reading arbitrary Windows files via input like /../../../../../../../../../Windows/win.ini. Exploitation is possible within a local network, and public disclosure has o...

8.8CVSS5.8AI score0.03333EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/04/04 2:15 a.m.18 views

CVE-2024-3274

UNSUPPORTED WHEN ASSIGNED A vulnerability has been found in D-Link DNS-320L, DNS-320LW and DNS-327L up to 20240403 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /cgi-bin/info.cgi of the component HTTP GET Request Handler. The manipulation...

5.3CVSS5.2AI score0.33484EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2024/04/04 12:0 a.m.37 views

CVE-2024-3273

UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as critical, was found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340L up to 20240403. Affected is an unknown function of the file /cgi-bin/nassharing.cgi of the component HTTP GET Request Handler. The manipulation of the argument...

9.8CVSS7.7AI score0.99997EPSS
In wildExploits8References7
Prion
Prion
added 2024/03/09 2:15 p.m.20 views

Sql injection

A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/maintenance/managecategory.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql...

6.5CVSS6.9AI score0.00687EPSS
Exploits1References3
Prion
Prion
added 2024/02/02 11:15 p.m.15 views

Sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Testimonial Page Manager 1.0. This issue affects some unknown processing of the file delete-testimonial.php of the component HTTP GET Request Handler. The manipulation of the argument testimony leads to sql...

7.5CVSS7.8AI score0.00594EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/01/25 9:15 p.m.27 views

CVE-2024-0885

A vulnerability classified as problematic has been found in SpyCamLizard 1.230. Affected is an unknown function of the component HTTP GET Request Handler. The manipulation leads to denial of service. It is possible to launch the attack remotely. The exploit has been disclosed to the public and ma...

7.5CVSS6.1AI score0.01371EPSS
Exploits1References3
Rows per page
Query Builder