EUVD-2008-0770

Malware in sbrugna...

EUVD-2016-0037

Malware in sbrugna...

EUVD-2020-17938

Malware in sbrugna...

EUVD-2017-4157

Malware in sbrugna...

EUVD-2021-19673

Malware in sbrugna...

EUVD-2022-35164

Malicious code in bioql PyPI...

EUVD-2022-0150

Malicious code in bioql PyPI...

EUVD-2023-2303

Malicious code in bioql PyPI...

CVE-2025-4377 Path traversal vulnerability in Sparx Pro Cloud Server WebEA webconfig in logview.php

Improper Limitation of a Pathname caused a Path Traversal vulnerability in Sparx Systems Pro Cloud Server. This vulnerability is present in logview.php and it allows reading arbitrary files on the filesystem. Logview is accessible on Pro Cloud Server Configuration interface. This issue affects Pr...

CVE-2025-0115

A vulnerability in the Palo Alto Networks PAN-OS software enables an authenticated admin on the PAN-OS CLI to read arbitrary files. The attacker must have network access to the management interface web, SSH, console, or telnet and successfully authenticate to exploit this issue. You can greatly...

CVE-2024-45779

An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading, leading to a he...

CVE-2024-13374

The WP Table Manager plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on thewptmgetFolders AJAX action in all versions up to, and including, 4.1.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read...

CVE-2024-46985

DataEase is an open source data visualization analysis tool. Prior to version 2.10.1, there is an XML external entity injection vulnerability in the static resource upload interface of DataEase. An attacker can construct a payload to implement intranet detection and file reading. The vulnerabilit...

CVE-2022-32275

Grafana 8.4.3 allows reading files via for example a /dashboard/snapshot/%7B%7Bconstructor.constructor'/.. /.. /.. /.. /.. /.. /.. /.. /etc/passwd URI. NOTE: the vendor's position is that there is no vulnerability; this request yields a benign error page, not /etc/passwd content...

Unauthorized reading files on phpSysInfo

/----------------------------------------------------------------------------- | 7 A 6 9 - A d v C: 007 |-----------------------------------------------------------------------------| | | Unauthorized reading files on phpSysInfo |...

CVE-1999-1494

colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument...

Дырка в arp в Solaris

Переполнение буфера причтении файла...

CVE-2000-0902

getalbum.php in PhotoAlbum before 0.9.9 allows remote attackers to read arbitrary files via a .. dot dot attack...

CVE-1999-0695

The Sybase PowerDynamo personal web server allows attackers to read arbitrary files through a .. dot dot attack...

Security Update for Microsoft Windows 2000 (KB826232)

A security issue has been identified that could allow an attacker to read files or run programs on a computer, running Microsoft® Windows® 2000, that has been used to view an attacker's Web site or has read a specially crafted HTML e-mail. You can help protect your computer by installing this...