Lucene search
K

7 matches found

CNNVD
CNNVD
added 2026/05/14 12:0 a.m.12 views

Gotenberg 安全漏洞

Gotenberg is an open-source, developer-friendly API developed by Gotenberg. It is used to convert various document formats into PDF files. Versions of Gotenberg prior to 8.32.0 contained security vulnerabilities. These vulnerabilities stemmed from the lack of protection for URL routing using...

5.9CVSS5.8AI score0.00251EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.8 views

PT-2025-47294

Name of the Vulnerable Software and Affected Versions versions affected versions not specified Description A webserver misconfiguration allows an unauthenticated remote attacker to read the source code of PHP modules. Recommendations At the moment, there is no information about a newer version th...

7.5CVSS6.8AI score0.00401EPSS
Exploits0References3
OSV
OSV
added 2025/01/27 11:15 p.m.5 views

CVE-2024-57549

CMSimple 5.16 allows the user to read cms source code through manipulation of the file name in the file parameter of a GET request...

7.5CVSS5.8AI score0.00632EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/07/01 12:54 p.m.11 views

CVE-2024-6424 Server-Side Request Forgery vulnerability in MESbook

External server-side request vulnerability in MESbook 20221021.03 version, which could allow a remote, unauthenticated attacker to exploit the endpoint "/api/Proxy/Post?userName=&password=&uri=FILE|INTERNAL URL|IP/HOST" or "/api/Proxy/Get?userName=&password=&uri=ARCHIVO|URL INTERNA|IP/HOST" to re...

9.3CVSS7AI score0.00494EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/09/29 12:0 a.m.6 views

GitLab Security Breach

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab. An attacker exploiting the...

7.5CVSS6.9AI score0.00623EPSS
Exploits0References3
OSV
OSV
added 2021/04/02 7:15 p.m.2 views

CVE-2021-3374

Directory traversal in RStudio Shiny Server before 1.5.16 allows attackers to read the application source code, involving an encoded slash...

5.3CVSS6.1AI score0.14252EPSS
Exploits1References2
CNVD
CNVD
added 2018/09/30 12:0 a.m.4 views

Asset Pipeline Catalog Traversal Vulnerability

Grails is the Grails project to develop a set of Groovy-based programming language and for rapid development of Web applications and open source frameworks . Asset Pipeline plugin is used in one of the plug-ins used to deal with static resources . Grails Asset Pipeline plugin version 3.0.4 before...

7.5CVSS7.5AI score0.02185EPSS
Exploits0References1
Rows per page
Query Builder