Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/04/23 6:14 p.m.3 views

CVE-2026-6074

CVE-2026-6074 describes a path traversal vulnerability in the Intrado 911 Emergency Gateway (EGW). The issue arises from a malformed path (".../...//") that could allow an attacker with existing network access to reach the EGW management interface without authentication. Successful exploitation c...

9.8CVSS5.9AI score0.00079EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/10/23 12:0 a.m.3 views

AutomationDirect Productivity Suite 安全漏洞

AutomationDirect Productivity Suite is a programmable logic controller programming software from AutomationDirect, Inc. A security vulnerability exists in AutomationDirect Productivity Suite version v4.4.1.19, which originates from a binding to an unrestricted IP address and could allow an...

10CVSS6.7AI score0.00368EPSS
Exploits0References4
OSV
OSVadded 2025/10/09 9:15 p.m.0 views

CVE-2025-35053

Newforma Info Exchange NIX accepts requests to '/UserWeb/Common/MarkupServices.ashx' specifying the 'DownloadExportedPDF' command that allow an authenticated user to read and delete arbitrary files with 'NT AUTHORITY\NetworkService' privileges. In Newforma before 2023.1, anonymous access is enabl...

6.4CVSS5.9AI score0.0015EPSS
Exploits0References3
OSV
OSVadded 2024/07/17 3:15 p.m.1 views

CVE-2024-23472

SolarWinds Access Rights Manager ARM is susceptible to Directory Traversal vulnerability. This vulnerability allows an authenticated user to arbitrary read and delete files in ARM...

8CVSS5.9AI score0.07457EPSS
Exploits0References1
OSV
OSVadded 2024/02/04 9:15 p.m.2 views

CVE-2021-46902

An issue was discovered in LTOS-Web-Interface in Meinberg LANTIME-Firmware before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. Path validation is mishandled, and thus an admin can read or delete files in violation of expected access controls...

7.2CVSS5.8AI score0.00379EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/10/04 12:0 a.m.4 views

PT-2023-6114 · A10 · A10 Thunder Adc

Name of the Vulnerable Software and Affected Versions: A10 Thunder ADC affected versions not specified Description: The issue is related to the FileMgmtExport class in the Advanced Core Operating System ACOS of A10 Thunder ADC controllers, where there is improper restriction of a directory path...

8.8CVSS6.9AI score0.11314EPSS
Exploits1References9
OSV
OSVadded 2023/07/06 8:53 p.m.2 views

GHSA-2Q4P-F6GF-MQR5 Graylog server has partial path traversal vulnerability in Support Bundle feature

A partial path traversal vulnerability exists in Graylog's Support Bundle feature. The vulnerability is caused by incorrect user input validation in an HTTP API resource. Thanks to weiweiwei9811 for reporting this vulnerability and providing detailed information. Impact Graylog's Support Bundle...

3.3CVSS5.9AI score0.00294EPSS
Exploits1References5
OSV
OSVadded 2018/09/12 9:29 p.m.1 views

CVE-2018-15610

A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated attacker to read and delete arbitrary files on the system. Affected versions of Avaya IP Office include 9.1 through 9.1 SP12, 10.0 through 10.0 SP7, and 10.1 through 10.1 SP2...

8.8CVSS5.9AI score0.00585EPSS
Exploits2References2
Rows per page
Query Builder