Lucene search
K

4 matches found

OSV
OSV
added 2023/01/02 10:15 p.m.4 views

CVE-2022-4298

The Wholesale Market WordPress plugin before 2.2.1 does not have authorisation check, as well as does not validate user input used to generate system path, allowing unauthenticated attackers to download arbitrary file from the server...

9.8CVSS5.9AI score0.01833EPSS
Exploits2References1
CNVD
CNVD
added 2021/10/12 12:0 a.m.5 views

rConfig Information Disclosure Vulnerability (CNVD-2021-99276)

rConfig is an open source network device configuration management utility . An information disclosure vulnerability exists in rConfig version 3.9.6. An attacker can exploit this vulnerability to download any file on the server...

6.5CVSS6.2AI score0.05471EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/10/11 12:0 a.m.3 views

rConfig 信息泄露漏洞

rConfig is an open source network device configuration management utility . An information disclosure vulnerability exists in rConfig version 3.9.6. An attacker can exploit this vulnerability to download any file on the server...

6.5CVSS6.6AI score0.05471EPSS
Exploits1References3
CNVD
CNVD
added 2016/09/23 12:0 a.m.3 views

WordPress Plugin Image Export Local File Leakage Vulnerability

WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A local file disclosure vulnerability exists in the WordPress plugin Image Export 'download/php'. An attacker...

6.3AI score
Exploits0References1
Rows per page
Query Builder