Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5903

Malware in sbrugna...

6.5CVSS6.6AI score0.01059EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5902

Malware in sbrugna...

8.8CVSS8.6AI score0.0114EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-5905

Malware in sbrugna...

9CVSS8.7AI score0.04344EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 8:28 a.m.5 views

CVE-2019-14765

Incorrect Access Control in AfficheExplorateurParam in DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to use administrative controllers...

8.8CVSS6.8AI score0.0114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:27 a.m.6 views

CVE-2019-14767

In DIMO YellowBox CRM before 6.3.4, Path Traversal in images/Apparence dossier=../ and servletrecuperefichier document=../ allows an unauthenticated user to download arbitrary files from the server...

7.5CVSS7.1AI score0.01443EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:15 a.m.10 views

CVE-2019-14766

Path Traversal in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to browse the server filesystem...

6.5CVSS6.7AI score0.01059EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:8 a.m.9 views

CVE-2019-14768

An Arbitrary File Upload issue in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to deploy a new WebApp WAR file to the Tomcat server via Path Traversal, allowing remote code execution with SYSTEM privileges...

9CVSS7.7AI score0.04344EPSS
Exploits0References1
OSV
OSV
added 2020/01/21 4:15 p.m.5 views

CVE-2019-14765

Incorrect Access Control in AfficheExplorateurParam in DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to use administrative controllers...

8.8CVSS7.3AI score0.0114EPSS
Exploits0References2
NVD
NVD
added 2020/01/21 4:15 p.m.16 views

CVE-2019-14766

Path Traversal in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to browse the server filesystem...

6.5CVSS6.3AI score0.01059EPSS
Exploits0References2
OSV
OSV
added 2020/01/21 4:15 p.m.5 views

CVE-2019-14767

In DIMO YellowBox CRM before 6.3.4, Path Traversal in images/Apparence dossier=../ and servletrecuperefichier document=../ allows an unauthenticated user to download arbitrary files from the server...

7.5CVSS7.2AI score0.01443EPSS
Exploits0References3
OSV
OSV
added 2020/01/21 4:15 p.m.5 views

CVE-2019-14768

An Arbitrary File Upload issue in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to deploy a new WebApp WAR file to the Tomcat server via Path Traversal, allowing remote code execution with SYSTEM privileges...

8.8CVSS7.8AI score0.04344EPSS
Exploits0References2
NVD
NVD
added 2020/01/21 4:15 p.m.16 views

CVE-2019-14765

Incorrect Access Control in AfficheExplorateurParam in DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to use administrative controllers...

8.8CVSS8.6AI score0.0114EPSS
Exploits0References2
NVD
NVD
added 2020/01/21 4:15 p.m.22 views

CVE-2019-14768

An Arbitrary File Upload issue in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to deploy a new WebApp WAR file to the Tomcat server via Path Traversal, allowing remote code execution with SYSTEM privileges...

9CVSS8.9AI score0.04344EPSS
Exploits0References2
Prion
Prion
added 2020/01/21 4:15 p.m.13 views

Path traversal

In DIMO YellowBox CRM before 6.3.4, Path Traversal in images/Apparence dossier=../ and servletrecuperefichier document=../ allows an unauthenticated user to download arbitrary files from the server...

5CVSS7.6AI score0.01443EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2020/01/21 4:15 p.m.20 views

Improper access control

Incorrect Access Control in AfficheExplorateurParam in DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to use administrative controllers...

6.5CVSS8.5AI score0.0114EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/01/21 4:15 p.m.16 views

Path traversal

An Arbitrary File Upload issue in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to deploy a new WebApp WAR file to the Tomcat server via Path Traversal, allowing remote code execution with SYSTEM privileges...

9CVSS8.8AI score0.04344EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/01/21 4:15 p.m.14 views

Path traversal

Path Traversal in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to browse the server filesystem...

4CVSS6.3AI score0.01059EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/01/21 3:36 p.m.45 views

CVE-2019-14768

CVE-2019-14768 affects DIMO YellowBox CRM prior to 6.3.4. An authenticated user can exploit an Arbitrary File Upload in the file browser to deploy a WebApp WAR to the Tomcat server via Path Traversal, enabling remote code execution with SYSTEM privileges. The vulnerability stems from improper val...

9CVSS8.8AI score0.04344EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/01/21 3:34 p.m.21 views

CVE-2019-14767

In DIMO YellowBox CRM before 6.3.4, Path Traversal in images/Apparence dossier=../ and servletrecuperefichier document=../ allows an unauthenticated user to download arbitrary files from the server...

7.6AI score0.01443EPSS
Exploits0References3
CVE
CVE
added 2020/01/21 3:34 p.m.45 views

CVE-2019-14767

In DIMO YellowBox CRM prior to version 6.3.4, a Path Traversal vulnerability exists in images/Apparence (dossier=../) and servletrecuperefichier (document=../) that allows an unauthenticated user to download arbitrary files from the server. Affected component: the application’s file retrieval pat...

7.5CVSS7.5AI score0.01443EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder