Lucene search
+L

22 matches found

euvd
euvd
added 2026/07/07 7:25 a.m.8 views

EUVD-2026-42019

Missing Authorization vulnerability in Armiya Information Technologies Ltd. Co. Access Control System GKS allows Collect Data from Common Resource Locations. This issue affects Access Control System GKS: before Version 2...

8.2CVSS5.9AI score0.00198EPSS
Exploits0References1
cvelist
cvelist
added 2026/07/07 7:25 a.m.34 views

CVE-2026-8377 Improper Authorization in Armiya Technologies' Access Control System

Missing Authorization vulnerability in Armiya Information Technologies Ltd. Co. Access Control System GKS allows Collect Data from Common Resource Locations. This issue affects Access Control System GKS: before Version 2...

8.2CVSS0.00198EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-47870

Malicious code in bioql PyPI...

9.2CVSS6.6AI score0.00405EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-48087

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00285EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 8:41 a.m.5 views

CVE-2024-7107

Files or Directories Accessible to External Parties vulnerability in National Keep Cyber Security Services CyberMath allows Collect Data from Common Resource Locations. This issue affects CyberMath: before CYBM.240816253...

7.5CVSS5.8AI score0.00285EPSS
Exploits0References1
osv
osv
added 2025/01/09 7:15 p.m.5 views

CVE-2024-13240

Improper Access Control vulnerability in Drupal Open Social allows Collect Data from Common Resource Locations.This issue affects Open Social: from 0.0.0 before 12.05...

7.5CVSS5.8AI score0.00368EPSS
Exploits0References1
nvd
nvd
added 2025/01/09 7:15 p.m.11 views

CVE-2024-13240

Improper Access Control vulnerability in Drupal Open Social allows Collect Data from Common Resource Locations.This issue affects Open Social: from 0.0.0 before 12.05...

7.5CVSS0.00368EPSS
Exploits0References1
osv
osv
added 2025/01/09 6:47 p.m.7 views

CVE-2024-13241 Open Social - Moderately critical - Information Disclosure - SA-CONTRIB-2024-005

Improper Authorization vulnerability in Drupal Open Social allows Collect Data from Common Resource Locations.This issue affects Open Social: from 0.0.0 before 12.0.5...

9.1CVSS7.2AI score0.00347EPSS
Exploits0References5
attackerkb
attackerkb
added 2024/10/04 12:15 p.m.17 views

CVE-2024-6400

Cleartext Storage of Sensitive Information, Exposure of Sensitive Information Through Data Queries vulnerability in Finrota Netahsilat allows Retrieve Embedded Sensitive Data, Authentication Bypass, IMAP/SMTP Command Injection, Collect Data from Common Resource Locations. This issue solved in...

8.2CVSS5.8AI score0.0062EPSS
Exploits0References3
attackerkb
attackerkb
added 2024/09/26 12:15 p.m.7 views

CVE-2024-7107

Files or Directories Accessible to External Parties vulnerability in National Keep Cyber Security Services CyberMath allows Collect Data from Common Resource Locations. This issue affects CyberMath: before CYBM.240816253...

7.5CVSS5.8AI score0.00285EPSS
Exploits0References3
osv
osv
added 2024/09/26 12:15 p.m.6 views

CVE-2024-7107

Files or Directories Accessible to External Parties vulnerability in National Keep Cyber Security Services CyberMath allows Collect Data from Common Resource Locations.This issue affects CyberMath: before CYBM.240816253...

7.5CVSS5.8AI score
Exploits0References1
cve
cve
added 2024/09/26 12:2 p.m.51 views

CVE-2024-7107

CVE-2024-7107 affects National Keep Cyber Security Services’ CyberMath. A directory traversal/file-access vulnerability allows external parties to collect data from common resource locations in CyberMath versions before CYBM.240816253. The issue is described across multiple sources (Red Hat, CVE ...

7.5CVSS5.8AI score0.00285EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2024/09/26 12:0 a.m.7 views

PT-2024-38080 · National Keep Cyber Security Services · Cybermath

Name of the Vulnerable Software and Affected Versions: CyberMath versions before CYBM.240816253 Description: The issue affects National Keep Cyber Security Services' CyberMath, allowing external parties to access files or directories and collect data from common resource locations. Recommendation...

7.5CVSS7.2AI score0.00285EPSS
Exploits0References7
nvd
nvd
added 2024/09/18 3:15 p.m.12 views

CVE-2024-6878

Files or Directories Accessible to External Parties vulnerability in Eliz Software Panel allows Collect Data from Common Resource Locations. This issue affects Panel: before v2.3.24...

9.2CVSS0.00405EPSS
Exploits0References2
attackerkb
attackerkb
added 2024/09/18 3:15 p.m.5 views

CVE-2024-6878

Files or Directories Accessible to External Parties vulnerability in Eliz Software Panel allows Collect Data from Common Resource Locations. This issue affects Panel: before v2.3.24...

9.2CVSS5.8AI score0.00405EPSS
Exploits0References3
osv
osv
added 2023/03/10 9:15 p.m.3 views

CVE-2023-1246

Files or Directories Accessible to External Parties vulnerability in Saysis Starcities allows Collect Data from Common Resource Locations.This issue affects Starcities: through 1.3...

7.5CVSS7.1AI score0.006EPSS
Exploits0References1
prion
prion
added 2023/03/10 9:15 p.m.16 views

Xxe

Files or Directories Accessible to External Parties vulnerability in Saysis Starcities allows Collect Data from Common Resource Locations.This issue affects Starcities: through 1.3...

5CVSS7.5AI score0.006EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2023/03/10 10:58 a.m.20 views

CVE-2023-1246 Files or Directories Accessible to External Parties in Saysis Starcities

Files or Directories Accessible to External Parties vulnerability in Saysis Starcities allows Collect Data from Common Resource Locations. This issue affects Starcities: through 1.3...

7.5CVSS7.7AI score0.006EPSS
Exploits0References2
github
github
added 2022/05/13 1:38 a.m.42 views

Keycloak Reflected XSS

It was found that Keycloak would accept a HOST header URL in the admin console and use it to determine web resource locations. An attacker could use this flaw against an authenticated user to attain reflected XSS via a malicious server...

5.4CVSS6AI score0.01021EPSS
Exploits0References7Affected Software1
n0where
n0where
added 2016/01/18 6:50 p.m.63 views

Open Source Database Fuzzing: FuzzDB

FuzzDB is the most comprehensive Open Source database of malicious inputs, predictable resource names, greppable strings for server response messages, and other resources like web shells. It’s like an application security scanner, without the scanner. What’s in FuzzDB? Predictable Resource...

7.7AI score
Exploits0References7
Rows per page
Query Builder