Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:12 p.m.9 views

CVE-2026-44377

CubeCart is an ecommerce software solution. Prior to 6.7.0, an Authenticated Server-Side Template Injection SSTI vulnerability exists in multiple modules of CubeCart including Email Templates and Documents. The application unsafely evaluates user-supplied input directly through the Smarty templat...

9.1CVSS5.7AI score0.00735EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/26 5:16 p.m.21 views

XWiki Platform has path traversal via resources parameter in ssx and jsx endpoints when using leading slash

Impact It's possible to get access and read configuration files by using URLs such as http://localhost:8080/bin/ssx/Main/WebHome?resource=/../../WEB-INF/xwiki.cfg&minify=false. This can apparently be reproduced on Tomcat instances. Patches This has been patched in 18.0.0-rc-1, 17.10.3, 17.4.9,...

9.3CVSS5.8AI score0.19538EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/13 8:36 p.m.9 views

CVE-2026-44377 CubeCart: Server-Side Template Injection (SSTI) in Smarty Templates leading to RCE

CubeCart is an ecommerce software solution. Prior to 6.7.0, an Authenticated Server-Side Template Injection SSTI vulnerability exists in multiple modules of CubeCart including Email Templates and Documents. The application unsafely evaluates user-supplied input directly through the Smarty templat...

9.1CVSS5.9AI score0.00735EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/07 3:57 p.m.4 views

CVE-2026-35583

Emissary is a P2P based data-driven workflow engine. Prior to 8.39.0, the configuration API endpoint /api/configuration/name validated configuration names using a blacklist approach that checked for , /, .., and trailing .. This could potentially be bypassed using URL-encoded variants,...

5.3CVSS5.9AI score0.0032EPSS
Exploits1References2Affected Software1
Metasploit
Metasploit
added 2025/12/12 6:56 p.m.339 views

N-able N-Central Authentication Bypass and XXE Scanner

This module scans for vulnerable N-able N-Central instances affected by CVE-2025-9316 Unauthenticated Session Bypass and CVE-2025-11700 XXE. The module attempts to exploit CVE-2025-9316 by sending a sessionHello SOAP request to the ServerMMS endpoint with various appliance IDs to obtain an...

8.4CVSS8.1AI score0.37335EPSS
Exploits2
ATTACKERKB
ATTACKERKB
added 2022/06/01 10:0 a.m.5 views

CVE-2022-22515

A remote, authenticated attacker could utilize the control program of the CODESYS Control runtime system to use the vulnerability in order to read and modify the configuration files of the affected products...

8.1CVSS7.4AI score0.01066EPSS
Exploits0References2Affected Software18
OSV
OSV
added 2022/04/07 7:15 p.m.1 views

CVE-2022-22515

A remote, authenticated attacker could utilize the control program of the CODESYS Control runtime system to use the vulnerability in order to read and modify the configuration files of the affected products...

8.1CVSS7.3AI score0.01066EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/07 12:0 a.m.5 views

3s-smart Software Solutions CODESYS Control 安全漏洞

3s-smart Software Solutions CODESYS Control is a suite of industrial control program programming software from 3s-smart Software Solutions, Germany. A security vulnerability exists in 3S-Smart Software Solutions CODESYS Control, which can be exploited by an unauthenticated, remote attacker who ca...

8.1CVSS8.4AI score0.01066EPSS
Exploits0References2
OSV
OSV
added 2019/01/31 9:29 p.m.3 views

CVE-2018-17928

The product CMS-770 Software Versions 1.7.1 and prioris vulnerable that an attacker can read sensitive configuration files by bypassing the user authentication mechanism...

6.5CVSS5.8AI score0.00766EPSS
Exploits0References2
OSV
OSV
added 2018/09/11 7:29 p.m.3 views

CVE-2018-11078

Dell EMC VPlex GeoSynchrony, versions prior to 6.1, contains an Insecure File Permissions vulnerability. A remote authenticated malicious user could read from VPN configuration files on and potentially author a MITM attack on the VPN traffic...

7.5CVSS5.8AI score0.0076EPSS
Exploits0References2
CNVD
CNVD
added 2016/09/19 12:0 a.m.5 views

Trane Tracer SC Information Disclosure Vulnerability

The Trane Tracer SC is an intelligent control panel from Trane USA that communicates with HVAC equipment controllers. A security vulnerability exists in the web server in Trane Tracer SC 4.2.1134 and earlier versions. A remote attacker could exploit the vulnerability by sending a direct request t...

5.3CVSS6.7AI score0.01164EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/09/15 12:0 a.m.5 views

The vulnerability of the microprogramming software of the Cisco TelePresence Video Communication Server allows a intruder to circumvent existing restrictions on access to configuration files.

The vulnerability of the Microprogramming Software of the Cisco TelePresence Video Communication Server lies in the lack of protection for service data. Exploiting this vulnerability allows a malicious actor, who operates remotely and has completed the authentication process, to circumvent existi...

4CVSS5.5AI score0.01546EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2014/05/29 12:0 a.m.4 views

PT-2014-3531 · Ovirt · Ovirt Engine Reports

Name of the Vulnerable Software and Affected Versions: ovirt-engine-reports versions prior to 3.3.3 Description: The issue allows local users to obtain sensitive information by reading configuration files due to world-readable permissions. Recommendations: For versions prior to 3.3.3, update to...

2.1CVSS5.7AI score0.00379EPSS
Exploits0References2
Rows per page
Query Builder