Lucene search
K

8 matches found

OSV
OSV
added 2023/12/15 7:2 p.m.34 views

CVE-2023-50720 XWiki Platform Solr search discloses email addresses of users

XWiki Platform is a generic wiki platform. Prior to versions 14.10.15, 15.5.2, and 15.7-rc-1, the Solr-based search in XWiki discloses the email addresses of users even when obfuscation of email addresses is enabled. To demonstrate the vulnerability, search for objcontent:email using XWiki's...

5.3CVSS5.5AI score0.59119EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/05/09 4:50 p.m.30 views

CVE-2022-0424 Popup by Supsystic < 1.10.9 - Unauthenticated Subscriber Email Addresses Disclosure

The Popup by Supsystic WordPress plugin before 1.10.9 does not have any authentication and authorisation in an AJAX action, allowing unauthenticated attackers to call it and get the email addresses of subscribed users...

5.7AI score0.02869EPSS
Exploits2References1
wpexploit
wpexploit
added 2021/11/11 12:0 a.m.135 views

Like Button Rating < 2.6.38 - Unauthorised Vote Export to Email & IP Addresses Disclosure

The plugin does not have any authorisation and CSRF checks in the likebtnexportvotes AJAX action, which could allow any authenticated user, such as subscriber, to get a list of email and IP addresses of people who liked content from the blog. fetch"http://example.com/wp-admin/admin-ajax.php",...

8CVSS7.6AI score0.00557EPSS
Exploits2
BDU FSTEC
BDU FSTEC
added 2019/09/02 12:0 a.m.7 views

The vulnerability of the ipddp_ioctl function in the Linux operating system’s kernel allows a hacker to disclose protected information.

The vulnerability of the ipddpioctl function drivers/net/appletalk/ipddp.c in the Linux kernel is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to disclose the protected kernel address information...

5.5CVSS7.2AI score0.0045EPSS
Exploits0References24Affected Software3
Cvelist
Cvelist
added 2018/02/21 12:0 a.m.27 views

CVE-2018-7273

In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function showfloppy in drivers/block/floppy.c. An attacker can read this information from dmesg and use the addresses to find the locations of kernel...

7AI score0.01794EPSS
Exploits3References3
Prion
Prion
added 2017/12/09 6:29 a.m.16 views

Memory corruption

An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses...

5CVSS5.5AI score0.0322EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2017/12/09 6:29 a.m.18 views

Memory corruption

An issue was discovered in Adobe Digital Editions 4.5.6 and earlier versions. An exploitable memory corruption vulnerability exists, which could lead to disclosure of memory addresses...

5CVSS5.5AI score0.0322EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/08/22 6:0 p.m.26 views

CVE-2016-6311

Get requests in JBoss Enterprise Application Platform EAP 7 disclose internal IP addresses to remote attackers...

7.1AI score0.02264EPSS
Exploits0References5
Rows per page
Query Builder