Grafana Loki 安全漏洞

Grafana Loki is an open-source log aggregation system developed by Grafana. There is a security vulnerability in Grafana Loki, which stems from insufficient validation of path traversal sequences. This vulnerability could allow attackers to read Ruler API endpoint files through double-encryption...

CVE-2026-4760

From Panorama Web HMI, an attacker can gain read access to certain Web HMI server files, if he knows their paths and if these files are accessible to the Servin process execution account. Installations based on Panorama Suite 2022-SP1 22.50.005 are vulnerable unless update PS-2210-02-4079 or high...

Yi Technology YI Home Camera 2 访问控制错误漏洞

The Yi Technology YI Home Camera 2 is an intelligent home camera device developed by China's Yi Technology Company. The version 2.1.120171024151200 of the Yi Technology YI Home Camera 2 has a vulnerability related to access control. This vulnerability stems from a lack of authentication in the...

CVE-2022-33715

Improper access control and path traversal vulnerability in LauncherProvider prior to SMR Aug-2022 Release 1 allow local attacker to access files of One UI...

SolarWinds Database Performance Analyzer 跨站脚本漏洞

SolarWinds Database Performance Analyzer is a set of database performance analyzers from SolarWinds Solarwinds, USA. The product is used for SQL query performance monitoring, analysis and tuning and so on. A cross-site scripting vulnerability exists in SolarWinds Database Performance Analyzer DPA...

Everyone Piano Handles MID File Memory Corruption Vulnerability

Everyone Piano is a program to play piano music through the keyboard. A memory corruption vulnerability exists in the handling of MID files, which allows an attacker to crash the program by constructing malformed MID files...