Lucene search
+L

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:41 a.m.11 views

CVE-1999-0498

TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files...

10CVSS6.7AI score0.03156EPSS
Exploits0References1
NVD
NVD
added 2025/12/11 10:15 p.m.4 views

CVE-2024-58302

FoF Pretty Mail 1.1.2 contains a local file inclusion vulnerability that allows administrative users to include arbitrary server files in email templates. Attackers can exploit the template settings by inserting file inclusion payloads to read sensitive system files like /etc/passwd during email...

6.9CVSS0.0029EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-5181

Malware in sbrugna...

9.8CVSS9.5AI score0.01542EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-39762

Malicious code in bioql PyPI...

9.8CVSS9AI score0.49201EPSS
Exploits3References5
CNNVD
CNNVD
added 2025/07/14 12:0 a.m.6 views

Tenda CP3 Pro 安全漏洞

Tenda CP3 Pro is a smart wireless PTZ camera that combines 360° panoramic surveillance, 3MP HD camera, and Wi-Fi 6 network technology, and supports human/pet detection, cry detection, and one-button calling. Tenda CP3 Pro suffers from a security vulnerability that originates from the presence of ...

6.8CVSS7AI score0.00207EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/06/07 12:0 a.m.5 views

PT-2024-13698 · Precor · Precor Touchscreen Console

Name of the Vulnerable Software and Affected Versions: Precor touchscreen console versions P62, P80, and P82 Description: The issue allows a remote attacker to obtain sensitive information because the root password is stored in /etc/passwd. An attacker could exploit this to extract files and obta...

8.8CVSS6.8AI score0.00322EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2021/12/10 1:15 p.m.3 views

CVE-2021-37187

An issue was discovered on Digi TransPort devices through 2021-07-21. An authenticated attacker may read a password file with reversible passwords from the device, which allows decoding of other users' passwords...

6.5CVSS6.6AI score0.00682EPSS
Exploits0References3
Prion
Prion
added 2017/12/01 5:29 p.m.15 views

Design/Logic Flaw

Password file exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to execute arbitrary commands with administrative privileges by retrieving credentials from this file...

5CVSS9.7AI score0.01542EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2017/12/01 5:0 p.m.51 views

CVE-2017-13664

CVE-2017-13664 affects iSmartAlarm CubeOne firmware prior to 2.2.4.8. The issue: a password file exposure in the firmware enables an attacker to retrieve credentials and execute arbitrary commands with administrative privileges. Impact described as arbitrary command execution with admin rights, e...

9.8CVSS9.7AI score0.01542EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2017/12/01 5:0 p.m.27 views

CVE-2017-13664

Password file exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to execute arbitrary commands with administrative privileges by retrieving credentials from this file...

9.8AI score0.01542EPSS
Exploits1References1
securityvulns
securityvulns
added 2001/03/12 12:0 a.m.37 views

Ikonboard v2.1.7b "show files" vulnerability

Product: Ikonboard - Version: 2.1.7b - OS: Unix, NT - Vendor: Notified, http://www.ikonboard.com -= Summary =- This is another bug in the Ikonboard. Anyone can read any file on the remote system with the privileges of the web server. -= Problem =- File: help.cgi ---L.44--- $inhelpon = $query -...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/11/27 12:0 a.m.229 views

WWWBoard passwd.txt Authentication Credential Disclosure

The remote host is running WWWBoard, a bulletin board system written by Matt Wright. This board system comes with a password file passwd.txt installed next to the file 'wwwboard.html'. An attacker may obtain the contents of this file and decode the password to modify the remote www board...

10CVSS5.5AI score0.08604EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 1999/01/01 12:0 a.m.6 views

PT-1999-1187 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The NFS exports system-critical data to the world, including sensitive directories like the root directory / or a password file. Recommendations: At the moment, there is no information...

10CVSS8.4AI score0.11134EPSS
Exploits2References3
Rows per page
Query Builder