CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2021-29511

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0049EPSS

Exploits0References1

Vulnrichment•added 2025/06/26 11:11 a.m.•3 views

CVE-2025-3773

A sensitive information exposure vulnerability in System Information Reporter SIR 1.0.3 and prior allows an authenticated non-admin local user to extract sensitive information stored in a registry backup folder...

5.6AI score0.00073EPSS

Exploits0References1

Cvelist•added 2025/06/26 11:11 a.m.•6 views

CVE-2025-3773

0.00073EPSS

Exploits0References1

Positive Technologies•added 2025/06/26 12:0 a.m.•1 views

PT-2025-26952

Name of the Vulnerable Software and Affected Versions: System Information Reporter SIR versions 1.0.3 and prior Description: A sensitive information exposure issue allows an authenticated non-admin local user to extract sensitive information stored in a registry backup folder. Recommendations: Fo...

5.5CVSS5.3AI score0.00073EPSS

Exploits0References5

CNVD•added 2025/05/28 12:0 a.m.•1 views

Siemens SCALANCE LPE9403 Path Traversal Vulnerability (CNVD-2025-17601)

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. A path traversal vulnerability exists in the Siemens SCALANCE LPE9403, which can be exploited by an attacker to cause a...

6.7CVSS6.6AI score0.00129EPSS

Exploits0References1

Vulnrichment•added 2025/05/13 9:38 a.m.•5 views

CVE-2025-40573

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices are vulnerable to path traversal attacks. This could allow a privileged local attacker to restore backups that are outside the backup folder...

6.7CVSS5.9AI score0.00129EPSS

Exploits0References1

CNNVD•added 2025/05/13 12:0 a.m.•1 views

Siemens SCALANCE LPE9403 路径遍历漏洞

6.7CVSS6.5AI score0.00129EPSS

Exploits0References3

Positive Technologies•added 2024/08/17 12:0 a.m.•3 views

PT-2024-14814 · WordPress · Backwpup

Name of the Vulnerable Software and Affected Versions: BackWPup plugin for WordPress versions up to, and including, 4.0.1 Description: The issue allows authenticated attackers to store backups in arbitrary folders on the server, provided they can be written to by the server. This is achieved via...

6.8CVSS6.6AI score0.00563EPSS

Exploits0References10

Positive Technologies•added 2024/06/25 12:0 a.m.•1 views

PT-2024-9955 · Rockwell Automation · Rockwell Automation Factorytalk System Service

Name of the Vulnerable Software and Affected Versions: Rockwell Automation FactoryTalk System Service affected versions not specified Description: The issue is related to the exposure of sensitive information due to the lack of explicit permissions set on the backup folder. A malicious user could...

5.5CVSS6.7AI score0.00009EPSS

Exploits0References6

Positive Technologies•added 2024/03/18 12:0 a.m.•2 views

PT-2024-15217

Name of the Vulnerable Software and Affected Versions BackWPup WordPress plugin versions prior to 4.0.4 Description The issue allows unauthenticated attackers to download backups of a site's database due to the lack of prevention of Directory Listing in the temporary backup folder. This exposes...

7.5CVSS6.7AI score0.26037EPSS

Exploits2References10

OSV•added 2021/10/22 2:15 p.m.•0 views

CVE-2021-42542

The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure...

8.8CVSS7.3AI score0.0049EPSS

Exploits0References1

NVD•added 2021/10/22 2:15 p.m.•8 views

CVE-2021-42542

The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure...

8.8CVSS0.0049EPSS

Exploits0References1

Prion•added 2021/10/22 2:15 p.m.•14 views

Directory traversal

The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure...

6.5CVSS8.7AI score0.0049EPSS

Exploits0References1Affected Software3

CVE•added 2021/10/22 1:23 p.m.•37 views

CVE-2021-42542

CVE-2021-42542 affects Emerson WirelessHART Gateway devices, where a directory traversal flaw stems from mishandling the structure of the supplied backup folder during restore. Public sources (NVD, CVE record, and ICS advisory) assign a CVSSv3 base score of 8.0 (high) and note remote exploitation...

8.8CVSS8.3AI score0.0049EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/10/22 1:23 p.m.•10 views

CVE-2021-42542 Emerson WirelessHART Gateway

The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure...

8CVSS8.9AI score0.0049EPSS

Exploits0References1

CNNVD•added 2021/10/22 12:0 a.m.•1 views

Emerson WirelessHART Gateway 路径遍历漏洞

The Emerson WirelessHART Gateway is a wireless gateway from Emerson Corporation. A path traversal vulnerability exists in the Emerson WirelessHART Gateway that stems from improper handling of the structure of the supplied backup folder. An attacker could use this vulnerability to cause directory...

8.8CVSS7.9AI score0.0049EPSS

Exploits0References2

Packet Storm•added 2010/09/21 12:0 a.m.•24 views

Krojac CMS SQL Injection

Exploit Title: Krojach CMS SQL Injection Vulnerabilities Date found: 6.2010 Author: MikiSoft Email: [email protected] CMS Software Site/Link: http://www.krojac.com Versions affected: All Edit: In latest version this is fixed now... Google dorks: intext:"Skrojio i sašio Krojač" ; intext:"Made...

0.1AI score

Exploits0

Packet Storm•added 2008/09/08 12:0 a.m.•28 views

integramod-database.txt

today i found some major security problem. the issue can be found at all integramod 1.4.x versions. explanation of the issue: all integramod versions do have a backup folder where the daily database backups are stored. the coders of integramod forgott to secure this folder. example: just head to...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by