Lucene search
K

5 matches found

OSV
OSV
added 2026/02/25 6:46 p.m.6 views

CVE-2026-25929 OpenEMR Patient Picture Context Allows Arbitrary Patient Photo Retrieval

OpenEMR is a free and open source electronic health records and medical practice management application. Prior to version 8.0.0, the document controller’s patientpicture context serves the patient’s photo by document ID or patient ID without verifying that the current user is authorized to access...

6.5CVSS5.7AI score0.0026EPSS
Exploits1References4
NVD
NVD
added 2025/02/19 11:15 p.m.10 views

CVE-2025-27092

GHOSTS is an open source user simulation framework for cyber experimentation, simulation, training, and exercise. A path traversal vulnerability was discovered in GHOSTS version 8.0.0.0 that allows an attacker to access files outside of the intended directory through the photo retrieval endpoint...

8.7CVSS0.00597EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/02/19 10:16 p.m.17 views

CVE-2025-27092 Path Traversal Vulnerability in GHOSTS Photo Retrieval Endpoint

GHOSTS is an open source user simulation framework for cyber experimentation, simulation, training, and exercise. A path traversal vulnerability was discovered in GHOSTS version 8.0.0.0 that allows an attacker to access files outside of the intended directory through the photo retrieval endpoint...

8.7CVSS0.00597EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/02/19 10:16 p.m.10 views

CVE-2025-27092 Path Traversal Vulnerability in GHOSTS Photo Retrieval Endpoint

GHOSTS is an open source user simulation framework for cyber experimentation, simulation, training, and exercise. A path traversal vulnerability was discovered in GHOSTS version 8.0.0.0 that allows an attacker to access files outside of the intended directory through the photo retrieval endpoint...

8.7CVSS6.5AI score0.00597EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.6 views

GHOSTS 路径遍历漏洞

GHOSTS is an open source realistic user simulation framework for network experiments, simulations, training and exercises from the Software Engineering Institute. A path traversal vulnerability exists in GHOSTS versions 8.0.0.0 through prior to 8.2.7.90, which stems from the presence of a path...

8.7CVSS6.5AI score0.00597EPSS
Exploits1References3
Rows per page
Query Builder