Buffalo LS520D 信息泄露漏洞

The Buffalo LS520D is a network attached storage device from Buffalo Japan that efficiently handles multi-CPU access to store and share data. A security vulnerability exists in the Buffalo LS520D version 4.53 that originates from an unauthenticated user being able to access the NAS web UI and rea...

CVE-2023-46502

An issue in openCRX v.5.2.2 allows a remote attacker to read internal files and execute server side request forgery attack via insecure DocumentBuilderFactory...

PT-2022-16135 · Xwiki · Xwiki Platform

Name of the Vulnerable Software and Affected Versions: XWiki Platform versions prior to 12.10.9 XWiki Platform versions prior to 13.4.3 XWiki Platform versions prior to 13.7-rc-1 Description: The issue allows any user with SCRIPT right to read any file located in the XWiki WAR, such as xwiki.cfg...

PT-2021-18231 · Unknown · Discord Recon Server

Name of the Vulnerable Software and Affected Versions: Discord Recon Server versions prior to 0.0.3 Description: A vulnerability in Discord Recon Server could be exploited to read internal files from the system and write files into the system, resulting in remote code execution. The issue has bee...

Aptana Jaxer wikilite source browser local file inclusion vulnerability

Aptana Jaxer is an open source JavaScript server . A local file inclusion vulnerability exists in the wikilite source viewer in Aptana Jaxer version 1.0.3.4547. A remote attacker can exploit this vulnerability with tools/sourceViewer/index.html?filename=... / URI to read internal files...