Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2025/06/15 7:42 p.m.4 views

CVE-2025-5964 Path traversal in M-Files API

A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows an authenticated user to read files in the server...

8.4CVSS6.8AI score0.10344EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/06/15 7:42 p.m.24 views

CVE-2025-5964 Path traversal in M-Files API

A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows an authenticated user to read files in the server...

8.4CVSS0.10344EPSS
Exploits1References2
CVE
CVE
added 2025/06/15 7:42 p.m.82 views

CVE-2025-5964

CVE-2025-5964 affects M‑Files Server pre-25.6.14925.0, where a path traversal flaw in the API endpoint lets an authenticated user read server files. Public sources describe the vulnerable component as the API handling file access, with the root cause being traversal in requests to REST endpoints....

8.4CVSS6.8AI score0.10344EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/27 9:57 a.m.21 views

CVE-2024-6789 Path traversal in M-Files API

A path traversal issue in API endpoint in M-Files Server before version 24.8.13981.0 and LTS 24.2.13421.15 SR2 and LTS 23.8.12892.0 SR6 allows authenticated user to read files...

8.4CVSS6.3AI score0.0056EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/11/22 10:15 a.m.3 views

CVE-2023-6189

Missing access permissions checks in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export jobs using the M-Files API methods...

5.3CVSS5.7AI score0.00511EPSS
Exploits0References4
NVD
NVD
added 2023/11/22 10:15 a.m.13 views

CVE-2023-6189

Missing access permissions checks in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export jobs using the M-Files API methods...

5.3CVSS0.00511EPSS
Exploits0References3
Rows per page
Query Builder