3 matches found
CVE-2024-44765
An Improper Authorization Access Control Misconfiguration vulnerability in MGT-COMMERCE GmbH CloudPanel v2.0.0 to v2.4.2 allows low-privilege users to bypass access controls and gain unauthorized access to sensitive configuration files and administrative functionality...
Information disclosure
OneNav 0.9.12 allows Information Disclosure of the onenav.db3 contents. NOTE: the vendor's recommended solution is to block the access via an NGINX configuration file...
CVE-2021-38712
Affected product: OneNav 0.9.12. Vulnerability: information disclosure of the onenav.db3 contents. The provided documents do not specify the exact root cause or exploited components beyond this disclosure. Impact: exposes database contents; no other impacts are detailed. Remediation / mitigation:...