Lucene search
K

39 matches found

Nuclei
Nuclei
added 2 days ago104 views

Spring MVC Framework - Local File Inclusion

Spring MVC Framework versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported are vulnerable to local file inclusion because they allow applications to configure Spring MVC to serve static resources e.g. CSS, JS, images. A malicious user can send a request using a...

5.9CVSS6.8AI score0.35681EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.10 views

CVE-2020-10080

GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group...

5.3CVSS6.6AI score0.00929EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:1 a.m.10 views

CVE-2023-25529

NVIDIA DGX H100 BMC and DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a leak of another user’s session token by observing timing discrepancies between server responses. A successful exploit of this vulnerability may lead to information...

8.1CVSS6.9AI score0.00516EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-4628

Malware in sbrugna...

5.5CVSS5.6AI score0.00272EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-5714

Malware in sbrugna...

4.9CVSS6.7AI score0.01366EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-18640

Malware in sbrugna...

7.5CVSS7.6AI score0.00804EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-18704

Malware in sbrugna...

7.5CVSS7.6AI score0.00526EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-36533

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00612EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-2790

Malicious code in bioql PyPI...

5.5CVSS5.6AI score0.0024EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-34420

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.10085EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-23980

Malicious code in bioql PyPI...

7.5CVSS5.2AI score0.00642EPSS
Exploits0References3
NVD
NVD
added 2025/08/12 3:15 a.m.7 views

CVE-2025-42935

The SAP NetWeaver Application Server ABAP and ABAP Platform Internet Communication Manager ICM permits authorized users with admin privileges and local access to log files to read sensitive information, resulting in information disclosure. This leads to high impact on the confidentiality of the...

4.1CVSS0.00135EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/12 4:23 p.m.11 views

CVE-2025-46788

Improper certificate validation in Zoom Workplace for Linux before version 6.4.13 may allow an unauthorized user to conduct an information disclosure via network access...

9.1CVSS6.1AI score0.00236EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 5:15 p.m.5 views

CVE-2025-48823

Cryptographic issues in Windows Cryptographic Services allows an unauthorized attacker to disclose information over a network...

5.9CVSS0.00559EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.7 views

PT-2025-29109 · Zoom Video Communications · Zoom Client

Name of the Vulnerable Software and Affected Versions: Zoom Clients versions prior to 6.4.5 Description: Cross-site scripting may allow an authenticated user to conduct a disclosure of information via network access. Recommendations: Update Zoom Clients to version 6.4.5 or later...

4CVSS5.7AI score0.00213EPSS
Exploits0References8
CVE
CVE
added 2025/06/18 12:17 a.m.28 views

CVE-2025-23252

CVE-2025-23252 affects NVIDIA NVDebug tool. The vulnerability could allow an attacker to access restricted components and cause information disclosure. Affected products include the NVDebug tool on x86_64/arm64-SBSA systems with versions prior to the patched updates. NVIDIA PSIRT notes a separate...

7.5CVSS4.6AI score0.0028EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 7:2 p.m.9 views

CVE-2021-1111

Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components...

6.7CVSS6.7AI score0.00281EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:52 p.m.7 views

CVE-2020-8604

A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote attackers to disclose sensitive informatoin on affected installations...

7.5CVSS6.7AI score0.89661EPSS
Exploits7References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:2 a.m.7 views

CVE-2019-17143

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

4.3CVSS6AI score0.03881EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:55 a.m.11 views

CVE-2017-20101

A vulnerability, which was classified as problematic, was found in ProjectSend r754. This affects an unknown part of the file process.php?do=zipdownload. The manipulation of the argument client/file leads to information disclosure. It is possible to initiate the attack remotely...

5.7CVSS6.5AI score0.01038EPSS
Exploits1References1
Rows per page
Query Builder