CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

SUSE CVE•added 2026/05/15 1:59 a.m.•4 views

SUSE CVE-2026-33380

A vulnerability in SQL Expressions allows an authenticated attacker to read arbitrary files from the Grafana server's filesystem. Only instances with the sqlExpressions feature toggle enabled are vulnerable...

6.3CVSS6AI score0.00012EPSS

Exploits0References3

Positive Technologies•added 2026/02/19 12:0 a.m.•4 views

PT-2026-20920

Name of the Vulnerable Software and Affected Versions Penpot versions prior to 2.13.2 Description Penpot is an open-source design and code collaboration tool. An authenticated user with team edit permissions can read arbitrary files from the server. This is achieved by providing a local file path...

7.5CVSS5.5AI score0.00109EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-0231

Malware in sbrugna...

7.5CVSS7.6AI score0.00596EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-0975

Malware in sbrugna...

7.5CVSS7.6AI score0.00533EPSS

Exploits1References5

OSV•added 2021/09/14 11:15 a.m.•0 views

CVE-2021-40356

A vulnerability has been identified in Teamcenter V12.4 All versions V12.4.0.8, Teamcenter V13.0 All versions V13.0.0.7, Teamcenter V13.1 All versions V13.1.0.5, Teamcenter V13.2 All versions 13.2.0.2. The application contains a XML External Entity Injection XXE vulnerability. This could allow an...

7.5CVSS7AI score

Exploits0References1

Prion•added 2020/01/21 4:15 p.m.•10 views

Path traversal

Path Traversal in the file browser of DIMO YellowBox CRM before 6.3.4 allows a standard authenticated user to browse the server filesystem...

4CVSS6.3AI score0.00528EPSS

Exploits0References2Affected Software1

NVD•added 2018/06/07 2:29 a.m.•7 views

CVE-2017-16213

mfrserver is a simple file server. mfrserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.5CVSS7.5AI score0.00533EPSS

Exploits1References2

NVD•added 2018/06/07 2:29 a.m.•7 views

CVE-2017-16183

iter-server is a static file server. iter-server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.5CVSS7.5AI score0.00533EPSS

Exploits1References2

NVD•added 2018/06/07 2:29 a.m.•9 views

CVE-2017-16123

welcomyzt is a simple file server. welcomyzt is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.5CVSS7.5AI score0.00596EPSS

Exploits1References2

Prion•added 2018/06/07 2:29 a.m.•9 views

Directory traversal

jnjjserver is a static file server. jnjjserver is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

5CVSS7.4AI score0.00533EPSS

Exploits1References2

Cvelist•added 2018/06/07 2:0 a.m.•15 views

CVE-2017-16182

serverxxx is a static file server. serverxxx is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.4AI score0.00533EPSS

Exploits1References2

Cvelist•added 2018/06/07 2:0 a.m.•13 views

CVE-2017-16197

qinserve is a static file server. qinserve is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url...

7.4AI score0.00257EPSS

Exploits1References2

securityvulns•added 2015/03/23 12:0 a.m.•45 views

[ MDVSA-2015:051 ] sympa

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:051 http://www.mandriva.com/en/support/security/ Package : sympa Date : March 3, 2015 Affected: Business Server 1.0 Problem Description: Updated sympa packages fix security vulnerability: A vulnerability hav...

5CVSS6.2AI score0.00585EPSS

Exploits0