Lucene search
+L

10 matches found

redhatcve
redhatcve
added 2026/06/05 7:29 p.m.12 views

CVE-2026-46337

WWBN AVideo is an open source video platform. In 29.0 and earlier, an unauthenticated remote attacker can read arbitrary image files anywhere on disk that the PHP user can open — including private user-profile photos that the application's normal serving wrappers gate behind ACLs, admin-uploaded...

6.9CVSS5.6AI score0.00455EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/01/09 12:16 p.m.10 views

CVE-2018-1000882

WeBid version up to current version 1.2.2 contains a Directory Traversal vulnerability in getthumb.php that can result in Arbitrary Image File Read. This attack appear to be exploitable via HTTP GET Request. This vulnerability appears to have been fixed in after commit...

7.5CVSS6.9AI score0.02377EPSS
Exploits1References1
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-2059

Malware in sbrugna...

7.5CVSS7.6AI score0.02377EPSS
Exploits1References4
osv
osv
added 2021/12/21 7:15 p.m.3 views

CVE-2021-44860

An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TIF files. An unchecked input data from a crafted TIF file leads to an out-of-bounds read. An attacker can leverage this vulnerability...

7.8CVSS7.2AI score0.00817EPSS
Exploits0References1
openvas
openvas
added 2021/09/10 12:0 a.m.7 views

Emby Server <= 4.7.6.0 Information Disclosure Vulnerability

Emby Server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.6CVSS8.3AI score0.01273EPSS
Exploits1References1
nvd
nvd
added 2018/12/20 5:29 p.m.20 views

CVE-2018-1000882

WeBid version up to current version 1.2.2 contains a Directory Traversal vulnerability in getthumb.php that can result in Arbitrary Image File Read. This attack appear to be exploitable via HTTP GET Request. This vulnerability appears to have been fixed in after commit...

7.5CVSS7.5AI score0.02377EPSS
Exploits1References3
prion
prion
added 2018/12/20 5:29 p.m.17 views

Directory traversal

WeBid version up to current version 1.2.2 contains a Directory Traversal vulnerability in getthumb.php that can result in Arbitrary Image File Read. This attack appear to be exploitable via HTTP GET Request. This vulnerability appears to have been fixed in after commit...

5CVSS7.5AI score0.02377EPSS
Exploits1References3Affected Software1
cve
cve
added 2018/12/20 5:0 p.m.46 views

CVE-2018-1000882

CVE-2018-1000882 concerns WeBid up to version 1.2.2, where a directory traversal vulnerability exists in the getthumb.php script, allowing Arbitrary Image File Read. The issue is exploitable via HTTP GET requests and is caused by insufficient validation of file paths in getthumb.php. Multiple con...

7.5CVSS7.5AI score0.02377EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2018/12/20 5:0 p.m.25 views

CVE-2018-1000882

WeBid version up to current version 1.2.2 contains a Directory Traversal vulnerability in getthumb.php that can result in Arbitrary Image File Read. This attack appear to be exploitable via HTTP GET Request. This vulnerability appears to have been fixed in after commit...

7.6AI score0.02377EPSS
Exploits1References3
debiancve
debiancve
added 2017/08/07 1:0 a.m.44 views

CVE-2017-12603

OpenCV Open Source Computer Vision Library through 3.3 has an invalid write in the cv::RLByteStream::getBytes function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 2-opencv-heapoverflow-fseek test case...

8.8CVSS7.1AI score0.0197EPSS
Exploits0
Rows per page
Query Builder