Lucene search
K

5 matches found

OSV
OSV
added 2025/03/07 4:19 p.m.7 views

GHSA-3W9F-2PPH-J5VC com.xwiki.confluencepro:application-confluence-migrator-pro-ui's application homepage is public

Impact The homepage of the application is public which enables a guest to download the package which might contain sensitive information. Patches 1.11.7 Workarounds The access to the page can be manually restricted to a specific set of users or groups...

7.5CVSS6.9AI score0.00348EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/04 12:0 a.m.15 views

CVE-2024-48057

localai =2.20.1 is vulnerable to Cross Site Scripting XSS. When calling the delete model API and passing inappropriate parameters, it can cause a one-time storage XSS, which will trigger the payload when a user accesses the homepage...

0.00191EPSS
Exploits1References2
exploitpack
exploitpack
added 2018/04/06 12:0 a.m.56 views

FiberHome VDSL2 Modem HG 150-UB - Authentication Bypass

FiberHome VDSL2 Modem HG 150-UB - Authentication Bypass Exploit Title: FiberHome VDSL2 Modem HG 150-UB Authentication Bypass Date: 04/03/2018 Exploit Author: Noman Riffat Vendor Homepage: http://www.fiberhome.com/ CVE : CVE-2018-9248, CVE-2018-9248 The vulnerability exists in plain text & hard...

7.5CVSS0.7AI score0.15255EPSS
Exploits2
Packet Storm
Packet Storm
added 2018/04/04 12:0 a.m.137 views

FiberHome VDSL2 Modem HG 150-UB Login Bypass

Exploit Title: FiberHome VDSL2 Modem HG 150-UB Login Bypass Date: 04/03/2018 Exploit Author: Noman Riffat Vendor Homepage: http://www.fiberhome.com/ The vulnerability exists in plain text & hard coded cookie. Using any cookie manager extension, an attacker can bypass login page by setting the...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2001/09/12 12:0 a.m.65 views

RedHat Linux 7.0 Apache - Remote Username Enumeration

source: https://www.securityfocus.com/bid/3335/info Versions of Apache webserver shipping with Red Hat Linux 7.0 and possibly other Apache distributions install with a default misconfiguration which could allow remote users to determine whether a give username exists on the vulnerable system...

7.4AI score
Exploits0
Rows per page
Query Builder