Lucene search
K

5 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.12 views

rustfs 安全漏洞

RustFS is a high-performance object storage system developed by RustFS. Versions of RustFS prior to 1.0.0-beta.2 contained security vulnerabilities. These vulnerabilities stemmed from the fact that the management router did not perform authentication on performance analysis endpoints, which could...

8.8CVSS5.8AI score0.0031EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/05 5:47 p.m.6 views

EUVD-2025-201462

Nextcloud Desktop is the desktop sync client for Nextcloud. Prior to 3.16.5, when trying to manually lock a file inside an end-to-end encrypted directory, the path of the file was sent to the server unencrypted, making it possible for administrators to see it in log files. This vulnerability is...

2.4CVSS6AI score0.00251EPSS
Exploits0References4
CNVD
CNVD
added 2018/02/12 12:0 a.m.5 views

EmpireCMS class/connect.php File Path Leakage Vulnerability

EmpireCMS is a free CMS Content Management System. A security vulnerability exists in EmpireCMS versions 6.6 through 7.2. The vulnerability can be exploited by a remote attacker to obtain the full path with the help of the class/connect.php file...

5.3CVSS6.9AI score0.01801EPSS
Exploits1References1
WPVulnDB
WPVulnDB
added 2017/10/20 12:0 a.m.55 views

Multiple Plugins - jQueryFileTree - Unauthenticated Path Traversal

Since no authentication or authorisation checks for direct access to the jqueryFileTree.php are made, the vulnerability allows for browsing the file system on a host out of an unauthenticated context. Even though no file content can be exfiltrated this way, "hidden" files e.g. in the web...

5CVSS2AI score0.57608EPSS
Exploits7References3Affected Software2
WPVulnDB
WPVulnDB
added 2017/05/11 12:0 a.m.24 views

Delightful Downloads <= 1.6.6 - Unauthenticated Path Traversal

Since no authentication or authorisation checks for direct access to the jqueryFileTree.php are made, the vulnerability allows for browsing the file system on a host out of an unauthenticated context. Even though no file content can be exfiltrated this way, "hidden" files e.g. in the web...

5CVSS0.9AI score0.57608EPSS
Exploits7References1Affected Software1
Rows per page
Query Builder