CVE-2025-45617

Incorrect access control in the component /user/list of productionssm v0.0.1-SNAPSHOT allows attackers to access sensitive information via a crafted payload...

PT-2025-19785 · Unknown · Production Ssm

Name of the Vulnerable Software and Affected Versions: production ssm version v0.0.1-SNAPSHOT Description: The issue is related to incorrect access control in the component /user/list, which allows attackers to access sensitive information via a crafted payload. Recommendations: For production ss...

CVE-2025-45617

CVE-2025-45617 affects production_ssm v0.0.1-SNAPSHOT, due to incorrect access control in the /user/list component. An attacker can access sensitive information via a crafted payload, per multiple sources. The CVE entry notes a high impact (CVSS v3.1: 7.5, NETWORK attack vector, NONE privileges r...

The vulnerability of the ABB eSOMS software for managing production processes lies in the use of a weak encryption mechanism, which allows attackers to disclose sensitive information that should be protected.

The vulnerability of the ABB eSOMS software for managing production processes is related to the use of a weak encryption mechanism. Exploiting this vulnerability could allow an attacker, operating remotely, to disclose the protected information...

Bug in Wasmtime implementation of pooling instance allocator

Bug in Wasmtime's implementation of its pooling instance allocator when the allocator is configured to give WebAssembly instances a maximum of zero pages of memory. In this configuration, the virtual memory mapping for WebAssembly memories did not meet the compiler-required configuration...

Adobe Illustrator out-of-bounds read vulnerability (CNVD-2023-07320)

Adobe Illustrator is a software released by Adobe Systems, Inc. for graphics production. An out-of-bounds read vulnerability exists in Adobe Illustrator, which can be exploited by attackers to bypass mitigations such as ASLR and cause sensitive memory leaks...

The vulnerability of software for the development and mass production of printed circuit boards, related to errors in processing uploaded files, allows a perpetrator to gain access to protected information or cause service failures.

The vulnerability of software for the development and mass production of printed circuit boards is related to errors in processing uploaded files. Exploiting this vulnerability can allow a malicious actor to gain access to protected information or cause service failures by sending a specially...

Directory Traversal in jansenstuffpleasework

Affected versions of jansenstuffpleasework resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

GHSA-F8RJ-4V7G-P5RJ Directory Traversal in jansenstuffpleasework

Affected versions of jansenstuffpleasework resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

GHSA-8W74-G84V-C5W8 Directory Traversal in chatbyvista

Affected versions of chatbyvista resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Exampl...

Directory Traversal in scott-blanch-weather-app

Affected versions of scott-blanch-weather-app resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable...

Directory Traversal in uekw1511server

Affected versions of uekw1511server resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system...

Directory Traversal in 360class.jansenhm

Affected versions of 360class.jansenhm resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system...

GHSA-25JW-GCFJ-283J Directory Traversal in 360class.jansenhm

Affected versions of 360class.jansenhm resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system...

GHSA-M69Q-PMXG-VQCH Directory Traversal in cypserver

Affected versions of cypserver resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

GHSA-96QC-GHJ4-RQ27 Directory Traversal in yttivy

Affected versions of yttivy resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

GHSA-JWJQ-VP53-PH6M Directory Traversal in pytservce

Affected versions of pytservce resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...

Directory Traversal in shit-server

Affected versions of shit-server resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Exampl...

GHSA-CCW5-7VFH-P5HM Directory Traversal in dmmcquay.lab6

Affected versions of dmmcquay.lab6 resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system...

Directory Traversal in enserver

Affected versions of enserver resolve relative file paths, resulting in a directory traversal vulnerability. A malicious actor can use this vulnerability to access files outside of the intended directory root, which may result in the disclosure of private files on the vulnerable system. Example...