4 matches found
EUVD-2026-35376
The Slider Revolution plugin for WordPress is vulnerable to Sensitive Information Disclosure in versions up to and including 7.0.10. This is due to three compounding design flaws: 1 the plugin leaks a valid backend AJAX nonce revslideractions to all authenticated users including Subscribers via t...
PT-2026-26177
Name of the Vulnerable Software and Affected Versions SiYuan versions 3.6.0 and below Description SiYuan, a personal knowledge management system, has an issue where the /api/lute/html2BlockDOM endpoint on the desktop copies local files pointed to by file:// links in pasted HTML into the workspace...
The vulnerability of the Fortinet FortiNAC access control device lies in the lack of measures taken at the management level to protect data. This allows attackers to copy local device files into local directories.
The vulnerability of the Fortinet FortiNAC network access control device is related to the lack of measures taken to protect data at the management level. Exploiting this vulnerability allows a malicious actor to copy device local files into local directories by connecting to the tcp/5555 port...
SUSE CVE-2014-1566
Mozilla Firefox before 31.1 on Android does not properly restrict copying of local files onto the SD card during processing of file: URLs, which allows attackers to obtain sensitive information from the Firefox profile directory via a crafted application. NOTE: this vulnerability exists because o...