Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

CVE
CVEadded 2026/05/29 1:3 p.m.6 views

CVE-2026-46337

WWBN AVideo (pre-29.0) is vulnerable: unauthenticated users can read arbitrary image files via view/img/image404Raw.php through path traversal in the image parameter. The file builds a local path without proper containment, then uses getimagesize() as a gate, enabling exposure of private or unrel...

6.9CVSS6AI score0.00071EPSS
Exploits1References1Affected Software1
OSV
OSVadded 2026/05/19 4:25 p.m.3 views

GHSA-W4QQ-74H6-58WQ AVideo: Unauthenticated Arbitrary Image Read via Path Traversal in `view/img/image404Raw.php`

Summary The endpoint requires no authentication. An unauthenticated remote attacker can read arbitrary image files anywhere on disk that the PHP user can open — including private user-profile photos that the application's normal serving wrappers gate behind ACLs, admin-uploaded thumbnails,...

6.9CVSS6AI score0.00071EPSS
Exploits1References2
OSV
OSVadded 2026/03/19 8:10 p.m.3 views

CVE-2026-33301 OpenEMR has arbitrary image file read via PDF generator

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 8.0.0.2, users with the Notes - my encounters role can fill Eye Exam forms in patient encounters. The answers to the form can be printed out in PDF form. An arbitrary file read...

7.1CVSS6AI score0.00041EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/03/19 8:10 p.m.14 views

CVE-2026-33301 OpenEMR has arbitrary image file read via PDF generator

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 8.0.0.2, users with the Notes - my encounters role can fill Eye Exam forms in patient encounters. The answers to the form can be printed out in PDF form. An arbitrary file read...

7.1CVSS0.00041EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/03/19 8:10 p.m.1 views

CVE-2026-33301 OpenEMR has arbitrary image file read via PDF generator

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to 8.0.0.2, users with the Notes - my encounters role can fill Eye Exam forms in patient encounters. The answers to the form can be printed out in PDF form. An arbitrary file read...

7.1CVSS5.9AI score0.00041EPSS
Exploits1References2
CVE
CVEadded 2026/03/19 8:10 p.m.3 views

CVE-2026-33301

OpenEMR (before version 8.0.0.2) is affected by an arbitrary image file read via the PDF generator. The vulnerability arises in the PDF creation function where form answers are parsed as unescaped HTML, enabling an attacker with the Notes - my encounters role to cause the generated PDF to include...

8.1CVSS5.9AI score0.00041EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder