EUVD-2026-34180

Cross Site Scripting vulnerability in MaxSite CMS v.109.2 allows a remote attacker to obtain sensitive information via the Backend page file upload endpoint used by adminpage...

CVE-2026-9583 SourceCodester CET Automated Grading System with AI Predictive Analytics SQL index.php information exposure

A weakness has been identified in SourceCodester CET Automated Grading System with AI Predictive Analytics 1.0. This impacts an unknown function of the file /index.php of the component SQL Handler. Executing a manipulation can lead to information exposure through error message. The attack may be...

Linux Distros Unpatched Vulnerability : CVE-2026-9122

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds read in GPU in Google Chrome on Mac prior to 148.0.7778.179 allowed a remote attacker to obtain potentially sensitive information from process...

PT-2026-38962

Name of the Vulnerable Software and Affected Versions SEPPmail Secure Email Gateway versions prior to 15.0.4 Description An unauthenticated endpoint in the new GINA UI exposes server environment variables, which allows remote attackers to obtain sensitive system information. Recommendations Updat...

MiracleLinux 7 : ntp-4.2.6p5-22.0.1.el7.AXS7 (AXSA:2015-852:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-852:03 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Apple Mac_Os_X

CVE-1999-0524 A Bash script to check if systems are vulnerable...

HP Integrated Lights-Out Information Exposure (CVE-2012-3271)

Unspecified vulnerability on the HP Integrated Lights-Out 3 aka iLO3 with firmware before 1.50 and Integrated Lights-Out 4 aka iLO4 with firmware before 1.13 allows remote attackers to obtain sensitive information via unknown vectors. This plugin only works with Tenable.ot. Please visit...

CVE-2025-43909

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Use of a Broken or Ris...

EUVD-2012-2295

Malware in sbrugna...

EUVD-2015-5085

Malware in sbrugna...

EUVD-2020-1645

Malware in sbrugna...

EUVD-2008-4136

Malware in sbrugna...

EUVD-2015-6988

Malware in sbrugna...

CVE-2025-29089

The CVE-2025-29089 entry concerns TP-Link AX10 Ax1500 (v1.3.10 Build 20230130). Affected component is the router's information handling that enables a remote attacker to obtain sensitive information. Public sources describe an information-disclosure vulnerability caused by a flaw in explicit tran...

PT-2025-32547 · Wukongopensource · Wukongcrm

Name of the Vulnerable Software and Affected Versions: WuKongOpenSource WukongCRM version 11.0 Description: A vulnerability exists in WuKongOpenSource WukongCRM 11.0, specifically within an unknown part of the /adminFile/upload file of the API Response Handler component. This allows for informati...

CVE-2011-3784

Francisco Burzi PHP-Nuke 8.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/Odyssey/theme.php and certain other files...

CVE-2011-3799

ReOS 2.0.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by padmin/blocks/vergal.php and certain other files...

Linux Distros Unpatched Vulnerability : CVE-2020-24904

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted mailto link...

Linux Distros Unpatched Vulnerability : CVE-2010-2531

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The varexport function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer to the user when certain fatal errors occur, even if displayerror...

PT-2024-27711 · Shenzhen Weitillage Industrial Co. · Access Management Specialist

Name of the Vulnerable Software and Affected Versions: Shenzhen Weitillage Industrial Co., Ltd access management specialist version V6.62.51215 Description: An issue in the access management specialist allows a remote attacker to obtain sensitive information. Recommendations: For version...