Lucene search
+L

35 matches found

OSV
OSV
added 2024/04/01 3:15 a.m.9 views

CVE-2024-20055

In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012...

6.3CVSS6.2AI score0.00079EPSS
Exploits0References1
OSV
OSV
added 2024/03/06 10:57 a.m.13 views

BIT-LIVEHELPERCHAT-2022-0083

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information...

7.3CVSS5AI score0.00899EPSS
Exploits1References2
OSV
OSV
added 2024/03/01 12:0 a.m.10 views

ASB-A-318303317

Bulletin has no description...

8.2CVSS7.2AI score0.00095EPSS
Exploits0References1
Veracode
Veracode
added 2022/09/19 1:0 p.m.39 views

Information Disclosure

thunderbird is vulnerable to information disclosure. An attacker can gain sensitive information when composing a response to an HTML email with a META refresh tag...

8.1CVSS7.7AI score0.00768EPSS
Exploits0References4Affected Software3
Veracode
Veracode
added 2022/09/05 9:42 p.m.28 views

Information Disclosure

podman is vulnerable to information disclosure. The vulnerability exists due to an incorrect version of podman missing for the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056 allowing an attacker to gain access to sensitive information stored in environment variables...

5.3CVSS5.6AI score0.01402EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2022/06/01 12:0 a.m.6 views

DHIS 2 SQL注入漏洞

DHIS2 is an information system for data capture, management, validation, analysis, and visualization. DHIS2 is vulnerable to SQL injection, which can be exploited by attackers to read, edit, and delete data in the DHIS2 instance database...

8.8CVSS5.8AI score0.01064EPSS
Exploits0References5
OSV
OSV
added 2022/05/14 3:47 a.m.20 views

GHSA-MC8M-X6HF-CW2G point-cli allows local users to obtain sensitive information by listing the process

lib/commands/setup.rb in the point-cli gem 0.0.1 for Ruby places credentials on the curl command line, which allows local users to obtain sensitive information by listing the process...

7.8CVSS7.4AI score0.00546EPSS
Exploits1References5
OSV
OSV
added 2022/01/06 10:22 p.m.17 views

GHSA-5MJ6-3CMQ-FH34 showdoc is vulnerable to Generation of Error Message Containing Sensitive Information

showdoc is vulnerable to Generation of Error Message Containing Sensitive Information...

5.3CVSS5.1AI score0.00969EPSS
Exploits1References4
Veracode
Veracode
added 2021/12/20 2:32 a.m.20 views

Path Traversal

messagebus is vulnerable to path traversal. The vulnerability exists as it enables diagnostic features by default which allows an attacker to gain sensitive information by traversing through diagnostic routes...

6.5CVSS4.6AI score0.01869EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2020/03/24 8:15 p.m.29 views

CVE-2020-10941

Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information an RSA private key by measuring cache usage during an import...

5.9CVSS6.2AI score
Exploits0References4
Veracode
Veracode
added 2019/01/15 9:25 a.m.14 views

Information Disclosure

openstack-keystone is vulnerable to information disclosure. An authorization bypass on the listing projects via an authenticated GET /v3/OS-FEDERATION/projects request allows authenticated users to discover projects they have no authority to access, disclosing the project and attributes informati...

5.3CVSS5AI score0.01618EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2008/11/19 12:0 a.m.73 views

Kimson cms cross site scripting vulnerability

.:::::Kimson Cross Site Scriptting Vulnerbility ::::. Discoverd By : md.r00t special tnx to: HadihadiVirangar Security Team & all virangar members & all hackerz & Hiva Digital Security Team -------------- D0rk: inurl:bbs.track.php?id= ---- xss:...

1.8AI score
Exploits0
Core Security
Core Security
added 2008/05/05 12:0 a.m.27 views

Wonderware SuiteLink Denial of Service vulnerability

Advisory ID Internal CORE-2008-0129 1. Advisory Information Title: Wonderware SuiteLink Denial of Service vulnerability Advisory ID: CORE-2008-0129 Advisory URL:https://www.coresecurity.com/content/wonderware Date published: 2008-05-05 Date of last update: 2008-05-05 Vendors contacted: Wonderware...

5CVSS7.2AI score0.1632EPSS
Exploits7
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.12 views

CVE-2020-12555

...

Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.13 views

CVE-2023-49590

...

Exploits0
Rows per page
Query Builder