Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2025/10/15 8:26 a.m.13 views

CVE-2025-11701

CVE-2025-11701 refers to the WordPress plugin Zip Attachments (versions

5.3CVSS5.1AI score0.00261EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2020-27748

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added vi...

6.5CVSS6.5AI score0.01443EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2024/11/15 12:0 a.m.4 views

PT-2024-9167 · Nextcloud +1 · Nextcloud Mail +1

Name of the Vulnerable Software and Affected Versions: Nextcloud Mail versions prior to 2.2.10 Nextcloud Mail versions prior to 3.6.2 Nextcloud Mail versions prior to 3.7.2 Description: The issue is related to insufficient access control in the Nextcloud mail client, allowing a remote attacker to...

8.2CVSS7.1AI score0.00698EPSS
Exploits0References11
Hacker One
Hacker Oneadded 2024/03/30 5:53 p.m.29 views

HackerOne: Attachment disclosure via summary report

A critical vulnerability was discovered in the HackerOne platform that allowed an attacker to gain unauthorized access to attachments belonging to other users through the report summary editing functionality. By manipulating attachment IDs in the request, an attacker could view sensitive files th...

7.2AI score
Exploits0
UbuntuCve
UbuntuCveadded 2012/11/16 12:24 p.m.27 views

CVE-2012-4197

Bugzilla/Attachment.pm in attachment.cgi in Bugzilla 2.x and 3.x before 3.6.12, 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 allows remote attackers to read attachment descriptions from private bugs via an obsolete=1 insert action...

5CVSS5.9AI score0.01543EPSS
Exploits1References3
OpenVAS
OpenVASadded 2005/11/03 12:0 a.m.21 views

BasiliX Attachment Disclosure Vulnerability

The remote web server contains a series of PHP scripts that are prone to information disclosure. Description : The remote host appears to be running a BasiliX version 1.1.0 or lower. Such versions save attachments by default under SPDX-FileCopyrightText: 2004 George A. Theall Some text descriptio...

2.1CVSS7.8AI score0.00349EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2004/07/14 12:0 a.m.34 views

osTicket Arbitrary Attachment Disclosure

The target is running at least one instance of osTicket that enables a remote user to view attachments associated with any existing ticket. These attachments may contain sensitive information. %NASLMINLEVEL 70300 This script was written by George A. Theall, . See the Nessus Scripts License for...

7.5CVSS5.4AI score0.09869EPSS
Exploits1References1
Rows per page
Query Builder