Lucene search
K

38 matches found

NVD
NVD
added 2026/02/09 4:15 a.m.7 views

CVE-2025-66599

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. Physical paths could be displayed on web pages. This information could be exploited by an attacker for other attacks. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVRN,...

6.9CVSS0.00261EPSS
Exploits0References1
CVE
CVE
added 2026/02/09 3:25 a.m.10 views

CVE-2025-66599

CVE-2025-66599 affects Yokogawa FAST/TOOLS (Packages: RVSVRN, UNSVRN, HMIWEB, FTEES, HMIMOB) from R9.01 through R10.04. The issue is that physical paths could be displayed on web pages, which could be exploited for other attacks (no exploit details provided). CVSS v4 base score is 6.9 (NETWORK ac...

6.9CVSS5.2AI score0.00261EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-0276

Malware in sbrugna...

6.4CVSS6.4AI score0.03468EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-14128

Malware in sbrugna...

5.3CVSS5.6AI score0.00897EPSS
Exploits1References2
NVD
NVD
added 2021/08/06 11:15 p.m.13 views

CVE-2020-21356

An information disclosure vulnerability in upload.php of PopojiCMS 1.2 leads to physical path disclosure of the host when 'name = "file" is deleted during file uploads...

5.3CVSS0.00897EPSS
Exploits1References1
Prion
Prion
added 2021/08/06 11:15 p.m.21 views

Information disclosure

An information disclosure vulnerability in upload.php of PopojiCMS 1.2 leads to physical path disclosure of the host when 'name = "file" is deleted during file uploads...

5CVSS4.9AI score0.00897EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/08/06 10:36 p.m.21 views

CVE-2020-21356

An information disclosure vulnerability in upload.php of PopojiCMS 1.2 leads to physical path disclosure of the host when 'name = "file" is deleted during file uploads...

4.9AI score0.00897EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/14 12:0 a.m.6 views

Dhcms Information Disclosure Vulnerability

DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A security vulnerability exists in Dhcms 2017-09-18. The vulnerability stems from the fact that the program can disclose physical paths. No detailed vulnerability details are provided at this time...

5.3CVSS6.7AI score0.01179EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/05/12 12:0 a.m.3 views

DhCms 输入验证错误漏洞

DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A security vulnerability exists in Dhcms 2017-09-18. The vulnerability stems from the fact that the program can disclose physical paths. No detailed vulnerability details are provided at this time...

5.3CVSS5.4AI score0.01179EPSS
Exploits1References2
CNVD
CNVD
added 2018/04/28 12:0 a.m.2 views

CMS Made Simple Physical Path Disclosure Vulnerability (CNVD-2018-09058)

CMS Made Simple CMSMS is an open source content management system CMS developed by the CMSMS team. The system supports role-based rights management system , wizard-based installation and update mechanism , intelligent caching mechanism and so on. A security vulnerability exists in CMSMS 2.2.7 and...

5.3CVSS6.6AI score0.01165EPSS
Exploits1References1
CNVD
CNVD
added 2018/04/10 12:0 a.m.1 views

idreamsoft iCMS Physical Path Disclosure Vulnerability

iCMS is an efficient and simple content management system built with PHP and MySQL. A physical path leak vulnerability exists in idreamsoft iCMS version 7.0.7 and lower. An attacker can obtain the physical path by displaying an invalid nickname field in the core/library/weixin.class.php pathname...

5.3CVSS6.7AI score0.01188EPSS
Exploits1References1
CNVD
CNVD
added 2018/03/26 12:0 a.m.3 views

dsmall Physical Path Disclosure Vulnerability

dsmall is a multi-user platform-level online shopping mall system. A security vulnerability exists in dsmall version 20180320. An attacker can exploit the vulnerability by sending public/index.php/home/predeposit/index.html?pdrsn=request to obtain a physical path...

7.5CVSS6.6AI score0.01152EPSS
Exploits0References1
CNVD
CNVD
added 2018/03/07 12:0 a.m.2 views

Z-BlogPHP Website Physical Path Disclosure Vulnerability

Z-BlogPHP is an open source PHP-based blogging system developed by the Z-Blog community. A security vulnerability exists in Z-BlogPHP version 1.5.1.1740. An attacker can exploit the vulnerability to obtain a physical path...

5.3CVSS6.6AI score0.08817EPSS
Exploits5References1
seebug.org
seebug.org
added 2016/12/27 12:0 a.m.24 views

wordpress plugin FancyBox admin-head.php physical path disclosure vulnerability

No description provided by source...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/02/27 12:0 a.m.64 views

PHP3 Physical Path Disclosure via POST Requests

The version of PHP3 running on the remote host will reveal the physical path of a given script when sent a HTTP POST request without a content-type header if it is incorrectly configured. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; i...

5.6AI score
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

John Roy Pi3Web 1.0.1 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2381/info A buffer overflow vulnerability has been reported in John Roy Pi3Web web server. The ISAPI application within the server fails to properly handle user supplied input. Requesting a specially crafted URL will caus...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

DS3 Authentication Server - Multiple Vulnerabilities

No description provided by source. Original: http://www.digitalsec.net/stuff/explt+advs/DS3.AuthServer.txt =============================== - Advisory - =============================== Tittle: DS3 Authentication Server - Command Execution Post Authentication & other minor issues Risk: High Date:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilities

No description provided by source. Original: http://www.digitalsec.net/stuff/explt+advs/Imperva-SecureSphere.OptMgr.txt =============================== - Advisory - =============================== Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issu...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2013/06/05 12:0 a.m.56 views

Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilities

Original: http://www.digitalsec.net/stuff/explt+advs/Imperva-SecureSphere.OptMgr.txt =============================== - Advisory - =============================== Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issues Risk: High Date: 27.May.2013...

7.4AI score
Exploits0
0day.today
0day.today
added 2013/06/05 12:0 a.m.64 views

Imperva SecureSphere Operations Manager Command Execution Vulnerability

Imperva SecureSphere Operations Manager version 9.0.0.5 Enterprise Edition suffers from path disclosure, command execution, and arbitrary file upload vulnerabilities. Tittle: Imperva SecureSphere Operations Manager - Command Execution Post Authentication & Minor issues Risk: High Date: 27.May.201...

7.4AI score
Exploits0
Rows per page
Query Builder