3 matches found
EUVD-2026-8921
Initiative is a self-hosted project management platform. An access control vulnerability exists in Initiative versions prior to 0.32.2 where uploaded documents are served from a publicly accessible /uploads/ directory without any authentication or authorization checks. Any uploaded file can be...
CVE-2025-63663
GT Edge AI Platform before v2.0.10 has an access-control flaw in the /api/v1/conversations/*/files endpoint allowing unauthorized users to access other users’ files. The issue affects GT Edge AI Platform versions prior to 2.0.10. The CVSSv3.1 base score is 7.5 (HIGH) with network attack vector an...
Artica Pandora FMS Information Disclosure Vulnerability (CNVD-2020-32912)
Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. A security vulnerability exists in Artica Pandora FMS version 7.44, which stems from the program not having proper access...