Lucene search
+L

10 matches found

Cvelist
Cvelist
added 2026/05/18 9:51 p.m.46 views

CVE-2026-27892 FacturaScripts: Unstripped Image Metadata (EXIF) Leakage via Library Module File Upload/Download

FacturaScripts is an open source accounting and invoicing software. In versions prior to 2026, the Library module stores and serves uploaded images byte-for-byte, without stripping EXIF/XMP/IPTC metadata. Any authenticated user who downloaded an image could extract the uploader's embedded metadat...

6.5CVSS0.00227EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/11 7:51 p.m.40 views

CVE-2026-42883 Audiobookshelf: Cross-library file exfiltration via unscoped bulk download endpoint

Audiobookshelf is a self-hosted audiobook and podcast server. Prior to 2.32.2, the GET /api/libraries/:id/download endpoint validates that the requesting user has access to the library specified in the URL path, but fetches downloadable items solely by attacker-provided IDs without constraining...

6.5CVSS0.00205EPSS
Exploits0References1
OSV
OSV
added 2026/05/08 3:51 a.m.3 views

CVE-2026-42277 Onyx: IDOR in /chat/file/{file_id} allows any authenticated user to download other users files

Onyx is an open-source AI platform. Prior to versions 3.0.9, 3.1.6, and 3.2.6, the GET /chat/file/fileid endpoint allows any authenticated user to download any other user's uploaded files by providing the file UUID. The endpoint verifies the caller is authenticated but never checks that the file...

6.5CVSS5.9AI score0.00201EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/24 7:27 p.m.4 views

CVE-2018-25145 Microhard Systems IPn4G 1.1.0 Configuration Disclosure via Authenticated Download

Microhard Systems IPn4G 1.1.0 contains a configuration file disclosure vulnerability that allows authenticated attackers to download sensitive system configuration files. Attackers can retrieve configuration files from multiple directories including '/www', '/etc/mcli/', and '/tmp' to access syst...

7.1CVSS6.2AI score0.00396EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.16 views

PT-2025-45386

Name of the Vulnerable Software and Affected Versions Jellysweep versions 0.12.1 and below Description Jellysweep is a cleanup tool for the Jellyfin media server. The /api/images/cache API endpoint accepts a URL parameter that is directly passed to a cache package, allowing the server to download...

8.9CVSS6.5AI score0.00289EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/08/22 12:0 a.m.14 views

CVE-2025-55455

DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext...

0.00259EPSS
Exploits1References2
OSV
OSV
added 2025/08/22 12:0 a.m.5 views

CVE-2025-55455

DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext...

3.5CVSS7.1AI score0.00259EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.11 views

PT-2025-34498 · Dootask · Dootask

Name of the Vulnerable Software and Affected Versions: DooTask version 1.0.51 Description: DooTask version 1.0.51 contains an authenticated arbitrary download vulnerability within the /msg/sendtext component. Recommendations: At the moment, there is no information about a newer version that...

3.5CVSS7AI score0.00259EPSS
Exploits1References6
OSV
OSV
added 2024/08/28 5:15 p.m.8 views

CVE-2024-7744

In WSFTP Server versions before 8.8.8 2022.0.8, an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in the Web Transfer Module allows File Discovery, Probe System Files, User-Controlled Filename, Path Traversal. An authenticated file download flaw has...

6.5CVSS5.8AI score0.00688EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/28 12:0 a.m.9 views

PT-2024-38552 · Ipswitch · Ws Ftp Server

Name of the Vulnerable Software and Affected Versions: WS FTP Server versions prior to 8.8.8 2022.0.8 Description: A vulnerability in the Web Transfer Module of WS FTP Server allows for Path Traversal, enabling file discovery, probing of system files, and user-controlled filename manipulation. An...

6.5CVSS7.2AI score0.00688EPSS
Exploits0References9
Rows per page
Query Builder