Lucene search
K

8 matches found

NVD
NVD
added 2 days ago6 views

CVE-2026-54652

Frigate is an open source network video recorder. In version 0.17.1, the GET /api/logs/service endpoint allows any authenticated user including the viewer role to download Frigate and nginx logs, exposing auto-generated admin passwords and camera credentials logged in request query strings and...

8.1CVSS0.00231EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/17 7:0 p.m.10 views

CVE-2025-46296

An authorization bypass vulnerability in FileMaker Server Admin Console allowed administrator roles with minimal privileges to access administrative features such as viewing license details and downloading application logs. This vulnerability has been fully addressed in FileMaker Server 22.0.4...

5.4CVSS6.9AI score0.00142EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:54 a.m.11 views

CVE-2024-22079

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Directory traversal can occur via the system logs download mechanism...

7.5CVSS6.9AI score0.01016EPSS
Exploits0References1
NVD
NVD
added 2024/03/20 5:15 a.m.10 views

CVE-2024-22079

An issue was discovered in Elspec G5 digital fault recorder versions 1.1.4.15 and before. Directory traversal can occur via the system logs download mechanism...

7.5CVSS6.6AI score0.01016EPSS
Exploits0References1
OSV
OSV
added 2024/02/27 1:15 a.m.4 views

CVE-2024-27356

An issue was discovered on certain GL-iNet devices. Attackers can download files such as logs via commands, potentially obtaining critical user information. This affects MT6000 4.5.5, XE3000 4.4.4, X3000 4.4.5, MT3000 4.5.0, MT2500 4.5.0, AXT1800 4.5.0, AX1800 4.5.0, A1300 4.5.0, S200 4.1.4-0300,...

7.5CVSS5.8AI score0.23905EPSS
Exploits3References2
CNNVD
CNNVD
added 2024/02/27 12:0 a.m.7 views

Various GL.iNet products Security Breach

GL.iNet MT6000 and others are products of China's GL.iNet GL.iNet. GL.iNet MT6000 is a router. GL.iNet XE3000 is an intelligent router. A security vulnerability exists in several GL.iNet products, which stems from a vulnerability that allows an attacker to obtain critical user information by...

7.5CVSS6.5AI score0.23905EPSS
Exploits3References4
EUVD
EUVD
added 2024/02/27 12:0 a.m.7 views

EUVD-2024-24560

An issue was discovered on certain GL-iNet devices. Attackers can download files such as logs via commands, potentially obtaining critical user information. This affects MT6000 4.5.5, XE3000 4.4.4, X3000 4.4.5, MT3000 4.5.0, MT2500 4.5.0, AXT1800 4.5.0, AX1800 4.5.0, A1300 4.5.0, S200 4.1.4-0300,...

7.5CVSS7.5AI score0.23905EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2022/11/09 12:0 a.m.5 views

PT-2022-25660 · WordPress · Wholesale Market For Woocommerce

Name of the Vulnerable Software and Affected Versions: The Wholesale Market for WooCommerce WordPress plugin versions prior to 2.0.0 Description: The issue allows high privilege users, such as admins, to download arbitrary logs from the server due to a lack of validation against path traversal...

2.7CVSS7AI score0.00705EPSS
Exploits2References6
Rows per page
Query Builder