Lucene search
K

297 matches found

Nuclei
Nuclei
added 2 days ago29 views

Joomla! Component BeeHeard 1.0 - Local File Inclusion

A directory traversal vulnerability in the BeeHeard combeeheard and BeeHeard Lite combeeheardlite component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. dot dot in the controller parameter to index.php. id: CVE-2010-1952 info: name: Joomla! Component BeeHeard 1.0 - Loc...

7.5CVSS6AI score0.12991EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/09 12:43 p.m.9 views

CVE-2005-1675

Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 installs the client installation directories with insecure EVERYBODY permissions, which allows local users to gain sensitive information...

4.6CVSS6.8AI score0.00969EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:42 p.m.9 views

CVE-2023-25597

A vulnerability in the web conferencing component of Mitel MiCollab through 9.6.2.9 could allow an unauthenticated attacker to download a shared file via a crafted request - including the exact path and filename - due to improper authentication control. A successful exploit could allow access to...

5.9CVSS7AI score0.00675EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:33 p.m.9 views

CVE-2023-31821

An issue found in ALBIS Co. ALBIS v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp ALBIS function...

7.5CVSS6.8AI score0.00502EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:27 p.m.5 views

CVE-2018-12735

SAJ Solar Inverter allows remote attackers to obtain potentially sensitive information via a direct request for the inverterinfo.htm or englishmain.htm URI...

7.5CVSS6.6AI score0.01368EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:28 a.m.9 views

CVE-2021-33558

Boa 0.94.13 allows remote attackers to obtain sensitive information via a misconfiguration involving backup.html, preview.html, js/log.js, log.html, email.html, online-users.html, and config.js. NOTE: multiple third parties report that this is a site-specific issue because those files are not par...

7.5CVSS6.5AI score0.10329EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:27 a.m.12 views

CVE-2021-33716

A vulnerability has been identified in SIMATIC CP 1543-1 incl. SIPLUS variants All versions V3.0, SIMATIC CP 1545-1 All versions V1.1. An attacker with access to the subnet of the affected device could retrieve sensitive information stored in cleartext...

6.5CVSS6AI score0.00245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:52 a.m.8 views

CVE-2022-42414

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.5CVSS6.1AI score0.00412EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.6 views

CVE-2020-23490

There was a local file disclosure vulnerability in AVideo 8.9 via the proxy streaming. An unauthenticated attacker can exploit this issue to read an arbitrary file on the server. Which could leak database credentials or other sensitive information such as /etc/passwd file...

7.5CVSS6.3AI score0.02623EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:29 a.m.10 views

CVE-2023-50703

An attacker with network access could perform a man-in-the-middle MitM attack and capture sensitive information to gain unauthorized access to the application...

6.3CVSS6.6AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:54 a.m.5 views

CVE-2013-7363

Unspecified vulnerability in the Diagnostics SMD agent in SAP Solution Manager allows remote attackers to obtain sensitive information, modify the configuration of applications, and install or remove applications via vectors involving the P4 protocol...

7.5CVSS6.8AI score0.01527EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:13 a.m.6 views

CVE-2024-2871

The Media Library Assistant plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcodes in all versions up to, and including, 3.13 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible f...

7.7CVSS7.3AI score0.00486EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/03 9:40 p.m.3 views

CVE-2025-11193

A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information...

6.8CVSS6.2AI score0.00107EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-2456

Malware in sbrugna...

5CVSS6.4AI score0.08538EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-3822

Malware in sbrugna...

9.1CVSS9.3AI score0.03134EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-3677

Malware in sbrugna...

5CVSS6.4AI score0.01335EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2016-7017

Malware in sbrugna...

5.3CVSS5.9AI score0.01302EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2011-3714

Malware in sbrugna...

5CVSS6.3AI score0.01373EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3712

Malware in sbrugna...

5CVSS6.2AI score0.01414EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-2127

Malware in sbrugna...

2.1CVSS7AI score0.00529EPSS
Exploits1References21
Rows per page
Query Builder