CVE-2020-11968

In the web-panel in IQrouter through 3.3.1, remote attackers can read system logs because of Incorrect Access Control. Note: The vendor claims that this vulnerability can only occur on a brand-new network that, after initiating the forced initial configuration which has a required step for settin...

CVE-2024-40091

Vilo 5 Mesh WiFi System = 5.16.1.33 lacks authentication in the Boa webserver, which allows remote, unauthenticated attackers to retrieve logs with sensitive system...

Arbitrary File Read Vulnerability in Chengdu Leader City Information Technology Co.

Chengdu Leader City Information Technology Co., Ltd. builds its website system using ThinkPHP. Chengdu Leader Information Technology Co., Ltd. building system there is an arbitrary file reading vulnerability, an attacker can use this vulnerability to remotely connect to the database, read the TP...

The vulnerability of the software for managing clusters of virtual machines in Kubernetes and the cloud platform OpenShift allows a hacker to read arbitrary logs.

The vulnerability of the Kubernetes cluster management software and the cloud platform OpenShift is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to read arbitrary logs using the container name, while operating remotely...