5 matches found
CVE-2026-52868
An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist storage area. In a multi-area deployment, this can cross departmental or clinic data separation...
CVE-2026-52868
An unauthenticated attacker can read worklist records from a directory outside the intended per-AE worklist storage area. In a multi-area deployment, this can cross departmental or clinic data separation...
CVE-2026-52868
The CVE-2026-52868 issue is a path traversal vulnerability in the OFFIS DCMTK Toolkit where an unauthenticated attacker can read worklist records stored outside the intended per-AE area, potentially crossing department/clinic data boundaries in multi-area deployments. Connected sources confirm th...
PT-2026-53994
Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An unauthenticated attacker can perform a directory traversal to read worklist records from a directory outside the intended per-AE worklist storage area. In...
📄 Grokability Snipe-IT 8.0.4 Insecure Direct Object Reference
Grokability Snipe-IT versions 8.0.4 and below suffer from an insecure direct object reference vulnerability. Exploit Title: Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference IDOR Google Dork: N/A Date: 2025-05-02 Exploit Author: Sn1p3r-H4ck3r Siripong Jintung Vendor Homepage:...