Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/29 10:51 a.m.2 views

EUVD-2025-36637

This vulnerability allows an attacker to access parts of the application that are not protected by any type of access control. The attacker could access this path ‘…/epsilonnet/License/About.aspx’ and obtain information on both the licence and the configuration of the product by knowing which...

6.9CVSS6.1AI score0.00063EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/10/29 12:0 a.m.3 views

PT-2025-44272

Name of the Vulnerable Software and Affected Versions Affected versions not specified Description This issue allows an attacker to access application areas without proper access controls. An attacker can access the path '/epsilonnet/License/About.aspx' to obtain information about the license and...

6.9CVSS6.3AI score0.00063EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2023/09/28 6:16 p.m.9 views

CVE-2023-43664 Employee without any access rights can list all installed modules in Prestashop

PrestaShop is an Open Source e-commerce web application. In the Prestashop Back office interface, an employee can list all modules without any access rights: method ajaxProcessGetPossibleHookingListForModule doesn't check access rights. This issue has been addressed in commit 15bd281c which is...

4.3CVSS6.7AI score0.00239EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2023/09/28 4:26 p.m.39 views

PrestaShop allows employee without any access rights to list all installed modules

Impact In BO, an employee can list all modules without any access rights: method ajaxProcessGetPossibleHookingListForModule doesn't check access rights Patches Fixed on 8.1.2 Workarounds References...

4.3CVSS6.9AI score0.00239EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2017/12/06 6:44 p.m.1 views

DRUPAL-CONTRIB-2017-091

The Configuration Update Reports sub-module in the Configuration Update module project enables you to run reports to see what configuration on your site differs from the configuration distributed by a module, theme, or installation profile, and to revert, delete, or import configuration. This...

6.7AI score
Exploits0References1
Prion
Prionadded 2013/08/20 10:55 p.m.25 views

Code injection

Puppet Module Tool PMT, as used in Puppet 2.7.x before 2.7.23 and 3.2.x before 3.2.4, and Puppet Enterprise 2.8.x before 2.8.3 and 3.0.x before 3.0.1, installs modules with weak permissions if those permissions were used when the modules were originally built, which might allow local users to rea...

3.6CVSS6.5AI score0.00108EPSS
Exploits0References4Affected Software2
OpenVAS
OpenVASadded 2013/07/01 12:0 a.m.38 views

Magnolia CMS Access Bypass Vulnerability

This host is running Magnolia CMS and is prone to access bypass vulnerability. OpenVAS Vulnerability Test $Id: gbmagnoliaaccessbypassvuln.nasl 6115 2017-05-12 09:03:25Z teissa $ Magnolia CMS Access Bypass Vulnerability Authors: Arun Kallavi Copyright: Copyright c 2013 Greenbone Networks GmbH,...

9.6AI score0.00125EPSS
Exploits1References2
Rows per page
Query Builder