Dolibarr Unauthenticated Contacts Database Theft

An issue in Dolibarr 16 before 16.0.5 allows unauthenticated attackers to perform a database dump and access a company's entire customer file, prospects, suppliers, and employee information if a contact file exists. id: CVE-2023-33568 info: name: Dolibarr Unauthenticated Contacts Database Theft...

CVE-2023-45594

A CWE-552 “Files or Directories Accessible to External Parties” vulnerability in the embedded Chromium browser allows a physical attacker to arbitrarily download/upload files to/from the file system, with unspecified impacts to the confidentiality, integrity, and availability of the device. This...

CVE-2024-2052

CWE-552: Files or Directories Accessible to External Parties vulnerability exists that could allow unauthenticated files and logs exfiltration and download of files when an attacker modifies the URL to download to a different location...

EUVD-2023-34017

Malicious code in bioql PyPI...

EUVD-2023-51723

Malicious code in bioql PyPI...

EUVD-2024-39144

Malicious code in bioql PyPI...

EUVD-2021-9904

Malicious code in bioql PyPI...

EUVD-2023-49886

Malicious code in bioql PyPI...

EUVD-2024-37321

Malicious code in bioql PyPI...

CVE-2023-47612

A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit Cinterion BGS5, Telit Cinterion EHS5/6/8, Telit Cinterion PDS5/6/8, Telit Cinterion ELS61/81, Telit Cinterion PLS62 that could allow an attacker with physical access to the target system to obtain a...

CVE-2021-22769

A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Easergy T300 with firmware V2.7.1 and older that could expose files or directory content when access from an attacker is not restricted or incorrectly restricted...

CVE-2025-2222

CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that could leak information and potential privilege escalation following man in the middle attack...

CVE-2025-2222

CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that could leak information and potential privilege escalation following man in the middle attack...

CVE-2025-2222

CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that could leak information and potential privilege escalation following man in the middle attack...

CVE-2025-2222

CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that could leak information and potential privilege escalation following man in the middle attack...

CVE-2025-2222

The CVE-2025-2222 entry relates to Schneider Electric ConneXium Network Manager. Affected component: the ConneXium Network Manager software; vulnerability arises from an externally accessible file or directory over HTTPS, enabling information disclosure and potential privilege escalation via a ma...

CVE-2024-41699

Priority – CWE-552: Files or Directories Accessible to External Parties...

CVE-2024-41699

Technical details about CVE-2024-41699 are not publicly available in the provided documents. No affected products, versions, or fixes are specified. Monitor for updates from authoritative sources.

CVE-2024-38429

Matrix Tafnit v8 - CWE-552: Files or Directories Accessible to External Parties...

CVE-2024-38429

CVE-2024-38429 affects Matrix Tafnit v8. The vulnerability is CWE-552: Files or Directories Accessible to External Parties, arising from access-control issues that allow external parties to access sensitive files/directories. In NVD/NVDC records, CVSSv3.1 is 7.5 (Network, Low complexity, No user ...