5 matches found
CVE-2024-37728
Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...
CVE-2024-37728
Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...
CVE-2024-37728
OfficeWeb365 (Xi’an Daxi Information Technology Co., Ltd) v7.18.23.0 and v8.6.1.0 suffer an Arbitrary File Read via the Pic/Indexes interface. This allows unauthenticated remote attackers to read arbitrary files from the server. Root cause indicators point to a mis-implemented file-access endpoin...
CVE-2024-37728
Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...
CVE-2024-37728
Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7.18.23.0 and v8.6.1.0 allows a remote attacker to obtain sensitive information via the "Pic/Indexes" interface...