125 matches found
CirCarLife <4.3 - Improper Authentication
CirCarLife before 4.3 is susceptible to improper authentication. An internal installation path disclosure exists due to the lack of authentication for /html/repository.System. An attacker can obtain sensitive information, modify data, and/or execute unauthorized operations. id: CVE-2018-16668 inf...
EUVD-2011-3716
Malware in sbrugna...
EUVD-2011-3662
Malware in sbrugna...
EUVD-2014-7931
Malware in sbrugna...
EUVD-2004-1730
Malware in sbrugna...
EUVD-2006-0452
Malware in sbrugna...
EUVD-2011-3750
Malware in sbrugna...
EUVD-2006-3088
Malware in sbrugna...
EUVD-2013-4195
Malware in sbrugna...
EUVD-2011-3685
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2011-3740
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FrontAccounting 2.3.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an err...
CVE-2025-47813
loginok.html in Wing FTP Server before 7.4.4 discloses the full local installation path of the application when using a long value in the UID cookie...
CVE-2011-3702
Ananta Gazelle 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/template.php and certain other files...
CVE-2024-47109
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 UI could disclosure the installation path of the server which could aid in further attacks against the system...
CVE-2024-47109
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6 and 6.2.0.0 through 6.2.0.3 UI could disclosure the installation path of the server which could aid in further attacks against the system...
CVE-2024-47109
IBM Sterling File Gateway UI versions 6.0.0.0–6.1.2.6 and 6.2.0.0–6.2.0.3 expose the server installation path, enabling information leakage that could aid prior or subsequent attacks. CVSS v3.1 base score 5.3 (Network, Low confidentiality impact). Remediation per IBM Security Bulletin: upgrade to...
CVE-2020-7387
Sage X3 Installation Pathname Disclosure. A specially crafted packet can elicit a response from the AdxDSrv.exe component that reveals the installation directory of the product. Note that this vulnerability can be combined with CVE-2020-7388 to achieve full RCE. This issue was fixed in AdxAdmin...
CVE-2020-7387
Sage X3 CVE-2020-7387 concerns an Installation Pathname Disclosure in AdxDSrv.exe. A crafted packet can trigger a response revealing the product installation directory. The vulnerability can be chained with CVE-2020-7388 to enable full RCE. Remediation: AdxAdmin 93.2.53 and associated updates for...
Joomla! 3.6.x < 3.7.0 Multiple Vulnerabilities
According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - A flaw exists in the JMail API due to PHPMail version information being included in mail headers. An unauthenticated, remote attacker can exploit this to disclose sensitive...
Joomla! 1.7.x < 3.7.0 Multiple Vulnerabilities
According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - A flaw exists in the JMail API due to PHPMail version information being included in mail headers. An unauthenticated, remote attacker can exploit this to disclose sensitive...