Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2024/03/31 12:0 a.m.4 views

PT-2024-13898 · Ibm · Ibm Cics Transaction Gateway For Multiplatforms

Name of the Vulnerable Software and Affected Versions: IBM CICS Transaction Gateway for Multiplatforms versions 9.2 through 9.3 Description: The issue could disclose sensitive path information to an attacker through debugging or error messages. It also involves the transmission or storage of...

4.9CVSS6.7AI score0.00322EPSS
Exploits0References6
CNVD
CNVDadded 2020/08/25 12:0 a.m.2 views

DBHcms Information Disclosure Vulnerability

DBHcms is a small, free and open source content management system for personal and small business websites. An information disclosure vulnerability exists in DBHcms 1.2.0. The vulnerability stems from /dbhcms/ext/news/ext.news.be.php has security access control. A remote unauthenticated attacker...

7.5CVSS6.5AI score0.01519EPSS
Exploits1References1
CNVD
CNVDadded 2016/12/06 12:0 a.m.2 views

Wordpress Twentyfourteen Theme Path Information Disclosure Vulnerability

WordPress is a blogging platform developed by the WordPress Software Foundation using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.Twentyfourteen is a default theme for WordPress. A path information disclosure vulnerability exists in the Wordpress...

6.2AI score
Exploits0References1
exploitpack
exploitpackadded 2007/04/27 12:0 a.m.8 views

Apache AXIS 1.0 - Non-Existent WSDL Path Information Disclosure

Apache AXIS 1.0 - Non-Existent WSDL Path Information Disclosure source: https://www.securityfocus.com/bid/23687/info Apache AXIS is prone to a path-information-disclosure vulnerability. Remote unauthorized attackers may be able to determine webserver directory paths. Information obtained may aid...

7.2AI score
Exploits0
CVE
CVEadded 2007/04/25 5:0 p.m.42 views

CVE-2007-2253

CVE-2007-2253 affects Exponent CMS 0.96.6 Alpha and earlier. The vulnerability is a path disclosure where remote attackers can obtain path information by directly requesting (1) sdk/blanks/formcontrol.php and (2) sdk/blanks/file_modules.php. The connected documents provide these concrete affected...

5CVSS6.4AI score0.01324EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2005/06/21 4:0 a.m.143 views

CVE-2002-1717

Microsoft Internet Information Services (IIS) 5.1 is affected by CVE-2002-1717, allowing remote attackers to view installation path information via GET requests to /_vti_pvt/access.cnf, /_vti_pvt/botinfs.cnf, /_vti_pvt/bots.cnf, or /_vti_pvt/linkinfo.cnf. OpenVAS/Nessus references confirm this .c...

5CVSS6.3AI score0.1551EPSS
Exploits0References4Affected Software1
securityvulns
securityvulnsadded 2002/05/28 12:0 a.m.106 views

Re: VP-ASP shopping cart software.

Hi, A small thing the original advisory author has not mentioned is that SQL injection is also possible allowing you to enter the administrative page with actually knowing the used administrator username and password, example: Username: 'or''=' i.e. enter just: 'or''=' Password: 'or''=' i.e. ente...

6.5AI score
Exploits0
Rows per page
Query Builder