Lucene search
K

25 matches found

CNVD
CNVD
added 2019/10/08 12:0 a.m.4 views

Unspecified Vulnerability in SilverStripe Versioned Files

SilverStripe is New Zealand SilverStripe company's set of open source programming framework and content management system CMS. The system has support for multiple languages , cross-platform and other features . A security vulnerability exists in SilverStripe version 3.x in the Versioned Files...

5.3CVSS7AI score0.01203EPSS
Exploits0References1
NVD
NVD
added 2019/09/26 4:15 p.m.57 views

CVE-2019-16409

In the Versioned Files module through 2.0.3 for SilverStripe 3.x, unpublished versions of files are publicly exposed to anyone who can guess their URL. This guess could be highly informed by a basic understanding of the symbiote/silverstripe-versionedfiles source code. Users who upgrade from...

5.3CVSS5.2AI score0.01203EPSS
Exploits0References3
Prion
Prion
added 2019/09/26 4:15 p.m.19 views

Design/Logic Flaw

In the Versioned Files module through 2.0.3 for SilverStripe 3.x, unpublished versions of files are publicly exposed to anyone who can guess their URL. This guess could be highly informed by a basic understanding of the symbiote/silverstripe-versionedfiles source code. Users who upgrade from...

5CVSS5.2AI score0.01203EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2019/09/26 2:36 p.m.124 views

CVE-2019-16409

CVE-2019-16409 affects the SilverStripe Versioned Files module up to version 2.0.3 on SilverStripe 3.x. Unpublished file versions are publicly exposed when their URLs are guessed, aided by knowledge of the module’s source code. The issue is a information disclosure due to insufficient access cont...

5.3CVSS5AI score0.01203EPSS
Exploits0References3Affected Software2
exploitpack
exploitpack
added 2004/03/05 12:0 a.m.28 views

VirtuaSystems VirtuaNews 1.0.x (Multiple Modules) - Cross-Site Scripting

VirtuaSystems VirtuaNews 1.0.x Multiple Modules - Cross-Site Scripting source: https://www.securityfocus.com/bid/9812/info It has been reported that the VirtuaNews non-default modules 'Files' and 'Vulns' are prone to multiple cross-site scripting vulnerabilities. These problems surround the...

Exploits0
Rows per page
Query Builder