Lucene search
+L

102 matches found

OSV
OSV
added 2019/08/02 5:15 p.m.4 views

CVE-2017-18436

cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call SEC-239...

3.5CVSS5.8AI score0.00382EPSS
Exploits0References2
Prion
Prion
added 2019/08/02 5:15 p.m.18 views

Code injection

cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call SEC-239...

2.7CVSS4.1AI score0.00382EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/02 4:13 p.m.21 views

CVE-2017-18436

cPanel before 64.0.21 allows demo accounts to read files via a Fileman::getfileactions API2 call SEC-239...

3.9AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2019/08/01 1:15 p.m.4 views

CVE-2018-20879

cPanel before 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API SEC-444...

6.3CVSS6.1AI score0.00992EPSS
Exploits0References1
NVD
NVD
added 2019/08/01 1:15 p.m.14 views

CVE-2018-20879

cPanel before 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API SEC-444...

6.5CVSS6.8AI score0.00992EPSS
Exploits0References1
Prion
Prion
added 2019/08/01 1:15 p.m.16 views

Code injection

cPanel before 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API SEC-444...

6.5CVSS6.8AI score0.00992EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/01 12:52 p.m.39 views

CVE-2018-20879

Summary: CVE-2018-20879 affects cPanel prior to 74.0.8, where demo accounts could execute arbitrary code via the Fileman::viewfile API (SEC-444). The public records indicate an unknown root cause in Fileman::viewfile that enables code execution. The NVD/CVE entries provide a CVSSv3 base score of ...

6.5CVSS6.8AI score0.00992EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/01 12:52 p.m.21 views

CVE-2018-20879

cPanel before 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API SEC-444...

6.8AI score0.00992EPSS
Exploits0References1
OSV
OSV
added 2019/06/20 4:15 p.m.5 views

CVE-2019-12905

FileRun 2019.05.21 allows XSS via the filename to the ?module=fileman&section=do&page=up URI. This issue has been fixed in FileRun 2019.06.01...

6.1CVSS6.3AI score0.03605EPSS
Exploits7References3
CNVD
CNVD
added 2019/05/05 12:0 a.m.6 views

DoorGets Sensitive Information Disclosure Vulnerability (CNVD-2019-13792)

DoorGets is a free and open source content management system. A sensitive information disclosure vulnerability exists in /fileman/php/downloaddir.php in doorGets 7.0. A remote, unauthenticated attacker can exploit this vulnerability to obtain sensitive information about the server...

7.5CVSS6.3AI score0.03869EPSS
Exploits1References1
CNVD
CNVD
added 2019/05/05 12:0 a.m.4 views

DoorGets Sensitive Information Disclosure Vulnerability (CNVD-2019-13788)

DoorGets is a free and open source content management system. A sensitive information disclosure vulnerability exists in /fileman/php/copyfile.php in doorGets 7.0. A remote, unauthenticated attacker can exploit this vulnerability to obtain sensitive information about the server...

7.5CVSS6.3AI score0.03869EPSS
Exploits1References1
OSV
OSV
added 2019/04/30 8:29 p.m.2 views

CVE-2019-11611

doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/download.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information...

7.5CVSS7.2AI score0.03869EPSS
Exploits1References1
OSV
OSV
added 2019/04/30 8:29 p.m.4 views

CVE-2019-11607

doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/copydir.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information...

7.5CVSS7.2AI score0.03869EPSS
Exploits1References1
Prion
Prion
added 2019/04/30 8:29 p.m.18 views

Information disclosure

doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/copyfile.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information...

5CVSS7.2AI score0.03869EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/04/30 8:29 p.m.19 views

Information disclosure

doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/downloaddir.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information...

5CVSS7.2AI score0.03869EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/04/30 7:39 p.m.46 views

CVE-2019-11611

DoorGets 7.0 is affected by a sensitive information disclosure in /fileman/php/download.php. A remote unauthenticated attacker can exploit this to obtain server‑sensitive information. The connected records corroborate the issue but do not provide the root cause details, affected versions beyond 7...

7.5CVSS7.2AI score0.03869EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/04/30 7:39 p.m.25 views

CVE-2019-11610

doorGets 7.0 has a sensitive information disclosure vulnerability in /fileman/php/downloaddir.php. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information...

7.2AI score0.03869EPSS
Exploits1References1
CVE
CVE
added 2019/04/30 7:39 p.m.56 views

CVE-2019-11610

DoorGets 7.0 contains a sensitive information disclosure vulnerability in /fileman/php/downloaddir.php. A remote unauthenticated attacker can exploit this to obtain server‑sensitive information. The Red Hat, CNVD, CNVD‑style entries and other references in the connected documents corroborate the ...

7.5CVSS7.2AI score0.03869EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/04/30 7:38 p.m.44 views

CVE-2019-11609

The CVE-2019-11609 entry concerns doorGets 7.0, where a vulnerability in /fileman/php/movefile.php allows a remote unauthenticated attacker to disclose server‑level sensitive information or render the server unserviceable. The Red Hat and CNVD/CVE mirrors corroborate the same description. Technic...

8.2CVSS7.6AI score0.04018EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/04/30 7:38 p.m.46 views

CVE-2019-11607

CVE-2019-11607 affects doorGets 7.0. The vulnerability is in /fileman/php/copydir.php and allows a remote unauthenticated attacker to obtain server-sensitive information (information disclosure). Descriptions across sources confirm the issue is tied to doorGets 7.0 and the copydir functionality. ...

7.5CVSS7.2AI score0.03869EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder