Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/03/07 7:59 a.m.5 views

CVE-2026-2331

An attacker may perform unauthenticated read and write operations on sensitive filesystem areas via the AppEngine Fileaccess over HTTP due to improper access restrictions. A critical filesystem directory was unintentionally exposed through the HTTP-based file access feature, allowing access witho...

9.8CVSS6AI score0.00886EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/06 9:31 a.m.6 views

EUVD-2026-10025

An attacker may perform unauthenticated read and write operations on sensitive filesystem areas via the AppEngine Fileaccess over HTTP due to improper access restrictions. A critical filesystem directory was unintentionally exposed through the HTTP-based file access feature, allowing access witho...

9.8CVSS6AI score0.00886EPSS
Exploits0References7
NVD
NVD
added 2026/03/06 8:16 a.m.8 views

CVE-2026-2331

An attacker may perform unauthenticated read and write operations on sensitive filesystem areas via the AppEngine Fileaccess over HTTP due to improper access restrictions. A critical filesystem directory was unintentionally exposed through the HTTP-based file access feature, allowing access witho...

9.8CVSS0.00886EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/03/06 7:56 a.m.6 views

CVE-2026-2331

An attacker may perform unauthenticated read and write operations on sensitive filesystem areas via the AppEngine Fileaccess over HTTP due to improper access restrictions. A critical filesystem directory was unintentionally exposed through the HTTP-based file access feature, allowing access witho...

9.8CVSS6AI score0.00886EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2026/03/06 7:56 a.m.24 views

CVE-2026-2331 CVE-2026-2331

An attacker may perform unauthenticated read and write operations on sensitive filesystem areas via the AppEngine Fileaccess over HTTP due to improper access restrictions. A critical filesystem directory was unintentionally exposed through the HTTP-based file access feature, allowing access witho...

9.8CVSS0.00886EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.6 views

SICK Lector85x和SICK SICK Lector83x 安全漏洞

SICK Lector85x and SICK SICK Lector83x are a series of QR code image recognition readers developed by the German company SICK. Both devices have security vulnerabilities. These vulnerabilities stem from incorrect access controls. Attackers could potentially perform unauthenticated read and write...

9.8CVSS5.9AI score0.00886EPSS
Exploits0References6
wpexploit
wpexploit
added 2024/05/02 12:0 a.m.151 views

CAS <= 1.0.0 - Unauthenticated Arbitrary File Access

Description This plugin does not validate a path generated with user input when downloading files, allowing unauthenticated user to download arbitrary files from the server https://example.com/wp-content/themes/cas/download.php?path=...

7AI score0.00719EPSS
Exploits1
NVD
NVD
added 2022/03/16 3:15 p.m.22 views

CVE-2021-39703

In updateState of UsbDeviceManager.java, there is a possible unauthorized access of files due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

7.8CVSS0.00118EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/15 12:0 a.m.2 views

D-Link DIR-880L and DIR-895 L/R Buffer Overflow Vulnerability

The D-Link DIR-880L is a wireless AC1900 dual-band Gigabit cloud router.The D-Link DIR-895 L/R is an AC5300 Wi-Fi tri-band router. A buffer overflow vulnerability exists in the htdocs/fileaccess.cgi component in the D-Link DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. An attacker can exploit this...

9.8CVSS8.2AI score0.04796EPSS
Exploits1References1
NVD
NVD
added 2015/10/21 6:59 p.m.20 views

CVE-2015-5954

The virtual filesystem in ownCloud Server before 6.0.9, 7.0.x before 7.0.7, and 8.0.x before 8.0.5 does not consider that NULL is a valid getPath return value, which allows remote authenticated users to bypass intended access restrictions and gain access to users files via a sharing link to a fil...

4CVSS6.2AI score0.01201EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/11/06 3:0 p.m.22 views

CVE-2014-8659

Directory traversal vulnerability in SAP Environment, Health, and Safety allows remote attackers to read arbitrary files via unspecified vectors...

6.7AI score0.01854EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

LoveCMS 1.4 index.php load Parameter Traversal Arbitrary File Access

No description provided by source...

7.1AI score
Exploits0
Rows per page
Query Builder