Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:19 p.m.8 views

CVE-2026-49191

The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages...

9.8CVSS5.4AI score0.00292EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 5:36 a.m.22 views

CVE-2026-49191

The CVE-2026-49191 entry concerns the production build of the M3WebServer where backend API keys are hard-coded and can be intercepted via verbose error handling pages. According to the provided data, this results in a high-impact exposure affecting confidentiality, integrity, and availability (C...

9.8CVSS5.8AI score0.00292EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/04 5:36 a.m.41 views

CVE-2026-49191 Exposed Hard-coded M3WebServer Backend API Key

The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages...

9.3CVSS0.00292EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/04 5:36 a.m.9 views

CVE-2026-49191 Exposed Hard-coded M3WebServer Backend API Key

The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages...

9.3CVSS5.8AI score0.00292EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/04 5:36 a.m.9 views

EUVD-2026-34210

The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages...

9.8CVSS5.8AI score0.00292EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.15 views

PT-2026-46149

The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages...

9.3CVSS5.8AI score0.00292EPSS
Exploits0References2
OSV
OSV
added 2025/10/29 10:15 p.m.4 views

CVE-2025-61959

Prior to September 19, 2025, the Hospital Manager Backend Services returned verbose ASP.NET error pages for invalid WebResource.axd requests, disclosing framework and ASP.NET version information, stack traces, internal paths, and the insecure configuration 'customErrors mode="Off"', which could...

6.9CVSS5.8AI score0.00249EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/29 9:54 p.m.5 views

CVE-2025-61959 Vertikal Systems Hospital Manager Backend Services Generation of Error Message Containing Sensitive Information

Prior to September 19, 2025, the Hospital Manager Backend Services returned verbose ASP.NET error pages for invalid WebResource.axd requests, disclosing framework and ASP.NET version information, stack traces, internal paths, and the insecure configuration 'customErrors mode="Off"', which could...

6.9CVSS0.00249EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/29 9:54 p.m.2 views

CVE-2025-61959 Vertikal Systems Hospital Manager Backend Services Generation of Error Message Containing Sensitive Information

Prior to September 19, 2025, the Hospital Manager Backend Services returned verbose ASP.NET error pages for invalid WebResource.axd requests, disclosing framework and ASP.NET version information, stack traces, internal paths, and the insecure configuration 'customErrors mode="Off"', which could...

6.9CVSS6.6AI score0.00249EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-25269

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00266EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/22 9:32 a.m.10 views

CVE-2025-9229

Information disclosure vulnerability in error handling in MiR software prior to version 3.0.0 allows unauthenticated attackers to view detailed error information, such as file paths and other data, via access to verbose error pages...

5.3CVSS7.1AI score0.00266EPSS
Exploits0References1
NVD
NVD
added 2025/08/20 9:15 a.m.9 views

CVE-2025-9229

Information disclosure vulnerability in error handling in MiR software prior to version 3.0.0 allows unauthenticated attackers to view detailed error information, such as file paths and other data, via access to verbose error pages...

5.3CVSS0.00266EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 8:36 a.m.4 views

CVE-2025-9229 Information Disclosure in MiR robots and MiR fleet through verbose error pages

Information disclosure vulnerability in error handling in MiR software prior to version 3.0.0 allows unauthenticated attackers to view detailed error information, such as file paths and other data, via access to verbose error pages...

5.3CVSS7AI score0.00266EPSS
Exploits0References2
CVE
CVE
added 2025/08/20 8:36 a.m.16 views

CVE-2025-9229

MiR software (Mobile Industrial Robots MiR controllers/robotics ecosystem) is affected prior to version 3.0.0. The issue is an information-disclosure vulnerability rooted in the error handling mechanism, which allows unauthenticated attackers to access verbose error pages and view detailed data s...

5.3CVSS7AI score0.00266EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/20 8:36 a.m.12 views

CVE-2025-9229 Information Disclosure in MiR robots and MiR fleet through verbose error pages

Information disclosure vulnerability in error handling in MiR software prior to version 3.0.0 allows unauthenticated attackers to view detailed error information, such as file paths and other data, via access to verbose error pages...

5.3CVSS0.00266EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.6 views

PT-2025-3192 · Unknown · Smart Toilet Lab - Motius

Name of the Vulnerable Software and Affected Versions: Smart Toilet Lab - Motius version 1.3.11 Description: The issue is related to the Smart Toilet Lab - Motius running with debug mode turned on, which exposes sensitive information defined in the Django settings file through a verbose error pag...

7.5CVSS6.7AI score0.00478EPSS
Exploits0References7
Hacker One
Hacker One
added 2019/04/01 6:15 p.m.73 views

U.S. Dept Of Defense: SQL Injection in ████

Summary There is an SQL injection vulnerability in ████████ in the /█████/recruiter/updapp.aspx page, exploitable through the appid form parameter. Impact An attacker could use this vulnerability to control the content in the database, exfiltrate information, and obtain remote code execution...

0.1AI score
Exploits0
Rows per page
Query Builder