Lucene search
+L

6 matches found

CVE
CVE
added 2024/10/03 3:16 p.m.49 views

CVE-2024-41163

CVE-2024-41163 affects Veertu Anka Build 1.42.0. A directory traversal flaw resides in the archive functionality, exploitable via unauthenticated HTTP requests to the registry endpoints (for example, /api/v1/registry/log/archive or /log/archive), allowing disclosure of sensitive files. CVSSv3.1 b...

7.5CVSS7.6AI score0.5249EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2023/07/22 5:15 p.m.18 views

CVE-2023-38633

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the local filesystem outside of the expected area, as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element...

5.5CVSS5.6AI score0.02132EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2020/08/25 12:0 a.m.19 views

Debian: Security Advisory (DSA-4747-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.0328EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/08/25 12:0 a.m.27 views

Debian DLA-2343-1 : icingaweb2 security update

A directory traversal vulnerability was discovered in Icinga Web 2, a web interface for Icinga, which could result in the disclosure of files readable by the process. For Debian 9 stretch, this problem has been fixed in version 2.4.1-1+deb9u1. We recommend that you upgrade your icingaweb2 package...

7.5CVSS7.2AI score0.0328EPSS
Exploits1References4
exploitpack
exploitpack
added 2019/07/31 12:0 a.m.66 views

Oracle Hyperion Planning 11.1.2.3 - XML External Entity

Oracle Hyperion Planning 11.1.2.3 - XML External Entity - Exploit Title: XXE Injection Oracle Hyperion - Exploit Author: Lucas Dinucci [email protected] - Twitter: @identik1t - Vendor Homepage: https://www.oracle.com/applications/performance-management - Date: 02/11/2019 - Affected Product:...

2.1CVSS0.04314EPSS
Exploits4
OpenVAS
OpenVAS
added 2015/04/09 12:0 a.m.18 views

Debian: Security Advisory (DSA-3218-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.02322EPSS
Exploits0References3
Rows per page
Query Builder