Lucene search
+L

14 matches found

Nuclei
Nuclei
added 15 hours ago96 views

CyberPower < v2.8.3 - SQL Injection

A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to . id: CVE-2024-32736 info: name: CyberPower PDNU" tags: cve,cve2024,cyberpower,sqli,vkev,vuln http: - method: GET path: - "BaseURL/api/v1/confup?mode=&uid=1'%20UNION%20select%201,2,3,4,sqliteversion;--"...

7.5CVSS7.3AI score0.05408EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the RDMA rxe driver not rejecting non-8-byte AtomicWrite payloads, potentially leading to remote...

7.5CVSS5.8AI score0.00467EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/12 12:0 a.m.8 views

bareiron 安全漏洞

Bareiron is a Minecraft game server developed by the P2R3 individual developer. Bareiron has a security vulnerability that stems from excessive reading of memory contents. This vulnerability could allow unverified remote attackers to cause information leakage by sending data packets...

7.5CVSS5.8AI score0.00324EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/04 12:0 a.m.6 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a security vulnerability that stems from a lack of boundary checking, which could lead to remote information leakage...

6.5CVSS6.3AI score0.00253EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/21 8:34 p.m.9 views

CVE-2002-2148

Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and IP address of the Ethernet interface via a discard UDP port 9 packet, which causes the device to le...

5CVSS6.4AI score0.01373EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/26 12:0 a.m.4 views

OpenPetra 安全漏洞

OpenPetra is a free management software from OpenPetra, Inc. A security vulnerability exists in openPetra version 2023.02, which originates in the serverMConference.asmx function and could allow a remote attacker to obtain sensitive information...

7.3CVSS6.6AI score0.00751EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2023/11/04 11:15 p.m.13 views

CVE-2023-46963

An issue in Beijing Yunfan Internet Technology Co., Ltd, Yunfan Learning Examination System v.6.5 allows a remote attacker to obtain sensitive information via the password parameter in the login function...

5.3CVSS5.8AI score0.00525EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.4 views

多款Adobe产品缓冲区错误漏洞

Adobe Acrobat is a set of PDF file editing and conversion tools. Adobe Reader is a set of PDF document reading software. Several Adobe products have an out-of-bounds read vulnerability, remote attackers can use this vulnerability to obtain sensitive information...

5.5CVSS5.7AI score0.02516EPSS
Exploits0References4
OSV
OSV
added 2022/02/18 6:15 p.m.3 views

CVE-2021-39026

IBM Guardium Data Encryption GDE 5.0.0.2 and 5.0.0.3 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle...

5.9CVSS6.3AI score0.0051EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/11/02 12:0 a.m.12 views

The vulnerability of the `redirect_to` and `polymorphic_url` methods in the Action Pack component of the Ruby on Rails software framework allows for information leakage in error messages, enabling attackers to access confidential data.

The vulnerability of the redirectto and polymorphicurl methods in the Action Pack component of the Ruby on Rails software framework is related to the leakage of information in error messages. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to confidential...

7.5CVSS6.6AI score0.04195EPSS
Exploits1References11Affected Software5
Tenable Nessus
Tenable Nessus
added 2020/08/28 12:0 a.m.36 views

EulerOS 2.0 SP8 : libvpx (EulerOS-SA-2020-1867)

According to the versions of the libvpx package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Check in libvpx, due to lack of boundaries, may read crossing the line.This can lead to a remote information leakage, without other executive...

9.3CVSS6.7AI score0.05392EPSS
Exploits0References3
CNVD
CNVD
added 2017/02/17 12:0 a.m.12 views

Cisco Prime Collaboration Assurance Information Leakage Vulnerability

Cisco Prime Collaboration Assurance is a video and voice services solution. A remote information leakage vulnerability exists in Cisco Prime Collaboration Assurance. An attacker could exploit this vulnerability to obtain sensitive information and cause further attacks...

4.3CVSS6.6AI score0.0149EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2010/04/23 12:0 a.m.35 views

Microsoft Internet Explorer 8 IMG Tag Hijacking

Hello Full disclosure! Once again, unwinding theme HiJacking found a fun way to get the very least information about the target resource when the user is located at the attacker. Already crocked tag opens new opportunities using the method fileSize, described here:...

7.4AI score
Exploits0
NVD
NVD
added 2002/12/31 5:0 a.m.12 views

CVE-2002-2191

Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner...

5CVSS6.2AI score0.02932EPSS
Exploits1References3
Rows per page
Query Builder