CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

Cvelist•added 2026/05/25 2:15 p.m.•32 views

CVE-2018-25374 Softneta MedDream PACS Server Premium 6.7.1.1 Directory Traversal

Softneta MedDream PACS Server Premium 6.7.1.1 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the path parameter. Attackers can send requests to nocache.php with encoded backslash sequences to traverse directories and acce...

8.7CVSS0.00683EPSS

Exploits0References3

CNNVD•added 2026/05/25 12:0 a.m.•5 views

Softneta MedDream PACS Server Premium SQL注入漏洞

Softneta MedDream PACS Server Premium is a medical image storage and reading platform from Softneta. A SQL injection vulnerability exists in Softneta MedDream PACS Server Premium version 6.7.1.1, which originates from malicious code injection via email parameters and could lead to execution of...

8.8CVSS6.2AI score0.00081EPSS

Exploits0References2

CNNVD•added 2026/05/25 12:0 a.m.•5 views

Softneta MedDream PACS Server Premium 路径遍历漏洞

Softneta MedDream PACS Server Premium is a medical image storage and reading platform from Softneta. A path traversal vulnerability exists in Softneta MedDream PACS Server Premium version 6.7.1.1, which originates from a directory traversal and could allow an unauthenticated attacker to read...

8.7CVSS5.9AI score0.00683EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-44757

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00638EPSS

Exploits0References1

NVD•added 2023/09/11 8:15 p.m.•5 views

CVE-2023-40150

Softneta MedDream PACS does not perform an authentication check and performs some dangerous functionality, which could result in unauthenticated remote code execution.0...

9.8CVSS10AI score0.00638EPSS

Exploits0References1

OSV•added 2023/09/11 8:15 p.m.•2 views

CVE-2023-40150

Softneta MedDream PACS does not perform an authentication check and performs some dangerous functionality, which could result in unauthenticated remote code execution.0...

9.8CVSS6AI score

Exploits0References1

NVD•added 2023/09/11 8:15 p.m.•11 views

CVE-2023-39227

Softneta MedDream PACS stores usernames and passwords in plaintext. The plaintext storage could be abused by attackers to leak legitimate user’s credentials...

7.5CVSS6.8AI score0.00083EPSS

Exploits0References1

Prion•added 2023/09/11 8:15 p.m.•20 views

Command injection

?Softneta MedDream PACS stores usernames and passwords in plaintext. The plaintext storage could be abused by attackers to leak legitimate user’s credentials...

5CVSS7.8AI score0.00083EPSS

Exploits0References1Affected Software1

CVE•added 2023/09/11 7:8 p.m.•52 views

CVE-2023-39227

CVE-2023-39227 affects Softneta MedDream PACS; the issue is plaintext storage of usernames and passwords (CWE-256) leading to credential leakage. Connected docs identify affected product and versions: MedDream PACS v7.2.8.810 and earlier. The root cause is insecure plaintext credential storage wi...

7.5CVSS6.8AI score0.00083EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/09/11 7:8 p.m.•14 views

CVE-2023-39227 Softneta MedDream PACS Plaintext Storage of a Password

Softneta MedDream PACS stores usernames and passwords in plaintext. The plaintext storage could be abused by attackers to leak legitimate user’s credentials...

6.1CVSS6.8AI score0.00083EPSS

Exploits0References1

Cvelist•added 2023/09/11 7:8 p.m.•10 views

CVE-2023-39227 Softneta MedDream PACS Plaintext Storage of a Password

Softneta MedDream PACS stores usernames and passwords in plaintext. The plaintext storage could be abused by attackers to leak legitimate user’s credentials...

6.1CVSS7.6AI score0.00083EPSS

Exploits0References1

Cvelist•added 2023/09/11 7:5 p.m.•7 views

CVE-2023-40150 Softneta MedDream PACS Exposed Dangerous Method or Function

Softneta MedDream PACS does not perform an authentication check and performs some dangerous functionality, which could result in unauthenticated remote code execution.0...

9.8CVSS10AI score0.00638EPSS

Exploits0References1

Vulnrichment•added 2023/09/11 7:5 p.m.•12 views

CVE-2023-40150 Softneta MedDream PACS Exposed Dangerous Method or Function

Softneta MedDream PACS does not perform an authentication check and performs some dangerous functionality, which could result in unauthenticated remote code execution.0...

9.8CVSS7.9AI score0.00638EPSS

Exploits0References1

CVE•added 2023/09/11 7:5 p.m.•26 views

CVE-2023-40150

CVE-2023-40150 affects Softneta MedDream PACS. The vulnerability stems from an authentication check omission that allows an attacker to trigger dangerous functionality and potentially achieve unauthenticated remote code execution. Affected product: MedDream PACS (v7.2.8.810 and earlier). Impact p...

9.8CVSS10AI score0.00638EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/09/11 12:0 a.m.•4 views

Softneta MedDream PACS Security Breach

Softneta MedDream PACS is a server from Softneta Inc. It is used to store, archive, manage and view medical images. A security vulnerability exists in Softneta MedDream PACS v7.2.8.810 and prior versions, which originates from storing user names and passwords in plaintext. An attacker can exploit...

7.5CVSS6.7AI score0.00083EPSS

Exploits0References2

Positive Technologies•added 2023/09/06 12:0 a.m.•3 views

PT-2023-26842 · Softneta · Meddream Pacs

Name of the Vulnerable Software and Affected Versions: Softneta MedDream PACS affected versions not specified Description: The issue concerns the storage of usernames and passwords in plaintext. This could be exploited by attackers to leak legitimate users' credentials. Recommendations: At the...

7.5CVSS7.2AI score0.00083EPSS

Exploits0References5

ICS•added 2023/09/05 6:0 a.m.•33 views

Softneta MedDream PACS Premium

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Softneta Equipment: MedDream PACS Vulnerabilities: Exposed Dangerous Method or Function, Plaintext Storage of a Password 2. RISK EVALUATION Successful exploitation of these vulnerabilities could...

9.8CVSS8.8AI score0.00638EPSS

Exploits0References10

Exploit DB•added 2020/10/12 12:0 a.m.•401 views

MedDream PACS Server 6.8.3.751 - Remote Code Execution (Unauthenticated)

!/usr/bin/python Exploit Title: MedDream PACS Server 6.8.3.751 - Remote Code Execution Unauthenticated Exploit Author: bzyo Twitter: @bzyo Date: 10-10-2020 Vulnerable Software: https://www.softneta.com/products/meddream-pacs-server/ Vendor Homepage: https://www.softneta.com Version: 6.8.3.751...

7.4AI score

Exploits0

Packet Storm•added 2020/10/02 12:0 a.m.•565 views

MedDream PACS Server 6.8.3.751 Remote Code Execution

!/usr/bin/python Exploit Title: MedDream PACS Server 6.8.3.751 - Remote Code Execution Authenticated Exploit Author: bzyo Twitter: @bzyo Exploit Title: MedDream PACS Server 6.8.3.751 - Remote Code Execution Authenticated Date: 2020-10-01 Vulnerable Software:...

7.4AI score

Exploits0

OpenVAS•added 2018/09/12 12:0 a.m.•31 views

MedDream PACS Detection (HTTP)

Detection of MedDream PACS Server. The script sends a connection request to the server and attempts to detect MedDream PACS Server. This VT has been deprecated and replaced by the VT SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and...

7.2AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by