4 matches found
CVE-2022-4298
The Wholesale Market WordPress plugin before 2.2.1 does not have authorisation check, as well as does not validate user input used to generate system path, allowing unauthenticated attackers to download arbitrary file from the server...
rConfig Information Disclosure Vulnerability (CNVD-2021-99276)
rConfig is an open source network device configuration management utility . An information disclosure vulnerability exists in rConfig version 3.9.6. An attacker can exploit this vulnerability to download any file on the server...
rConfig 信息泄露漏洞
rConfig is an open source network device configuration management utility . An information disclosure vulnerability exists in rConfig version 3.9.6. An attacker can exploit this vulnerability to download any file on the server...
WordPress Plugin Image Export Local File Leakage Vulnerability
WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A local file disclosure vulnerability exists in the WordPress plugin Image Export 'download/php'. An attacker...