Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNNVD
CNNVDadded 2026/04/07 12:0 a.m.3 views

Vite 路径遍历漏洞

Vite is a new type of front-end build tool developed by Vite itself. Versions of Vite from 6.0.0 to 6.4.2, before 7.3.2, and before 8.0.5 contained a path traversal vulnerability. This vulnerability stemmed from insufficient path traversal restrictions on .map requests, which could allow bypassin...

6.3CVSS5.8AI score0.00914EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/09/21 4:25 p.m.10 views

CVE-2025-59427

The Cloudflare Vite plugin enables a full-featured integration between Vite and the Workers runtime. When utilising the Cloudflare Vite plugin in its default configuration, all files are exposed by the local dev server, including files in the root directory that contain secret information such as...

6.3CVSS6.4AI score0.00358EPSS
Exploits0References1
OSV
OSVadded 2025/03/10 11:15 p.m.2 views

DEBIAN-CVE-2025-27610

Rack provides an interface for developing web applications in Ruby. Prior to versions 2.2.13, 3.0.14, and 3.1.12, Rack::Static can serve files under the specified root: even if urls: are provided, which may expose other files under the specified root: unexpectedly. The vulnerability occurs becaus...

7.5CVSS7.2AI score0.01068EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/05/30 12:0 a.m.2 views

PT-2024-40443 · Typo3 · Typo3

Name of the Vulnerable Software and Affected Versions: TYPO3 affected versions not specified Description: A issue has been found that allows editors with access to the file list module to list all file names and folder names in the root directory of a TYPO3 installation. However, modification of...

6.5CVSS6.9AI score
Exploits0References6
CNNVD
CNNVDadded 2023/12/11 12:0 a.m.5 views

WordPress Plugin File Manager Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.5CVSS8.9AI score0.0085EPSS
Exploits2References2
OSV
OSVadded 2022/07/17 10:15 p.m.3 views

CVE-2021-40149

The web server of the E1 Zoom camera through 3.0.0.716 discloses its SSL private key via the root web server directory. In this way an attacker can download the entire key via the /self.key URI...

5.9CVSS7.3AI score0.05674EPSS
Exploits4References3
securityvulns
securityvulnsadded 2003/10/28 12:0 a.m.25 views

[Full-Disclosure] Bytehoard File Disclosure VUlnerability Sequel

So I'm sure this passed over your inboxes in some form or another.... http://www.securiteam.com/unixfocus/6L00L008KE.html Just a standard directory traversal attack in an open source, fixed rapidly like any good open source project. Except that nobody really looked too hard at the software, try...

0.9AI score
Exploits0
Positive Technologies
Positive Technologiesadded 1999/01/01 12:0 a.m.3 views

PT-1999-1187 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The NFS exports system-critical data to the world, including sensitive directories like the root directory / or a password file. Recommendations: At the moment, there is no information...

10CVSS8.4AI score0.11134EPSS
Exploits2References3
Rows per page
Query Builder