CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Tenable Nessus•added 2025/08/25 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2017-0360

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fileopen in Tryton 3.x and 4.x through 4.2.2 allows remote authenticated users with certain permissions to read arbitrary files via a same root name but with a...

5.3CVSS5.6AI score0.00317EPSS

Exploits0References2

CNNVD•added 2023/08/07 12:0 a.m.•1 views

ZOHO ManageEngine ADAudit Plus Security Vulnerability

ZOHO ManageEngine ADAudit Plus is used by ZOHO USA to simplify auditing, prove compliance and detect threats. A security vulnerability exists in ZOHO ManageEngine ADAudit Plus version 7.1.1. An attacker could exploit the vulnerability to bypass audit detection by creating or renaming user account...

7.5CVSS6.7AI score0.00184EPSS

Exploits1References2

SUSE CVE•added 2023/02/15 4:53 a.m.•1 views

SUSE CVE-2017-0360

fileopen in Tryton 3.x and 4.x through 4.2.2 allows remote authenticated users with certain permissions to read arbitrary files via a "same root name but with a suffix" attack. NOTE: This vulnerability exists because of an incomplete fix for CVE-2016-1242...

5.3CVSS5.2AI score0.00317EPSS

Exploits0References3

Github Security Blog•added 2022/05/13 1:39 a.m.•12 views

Tryton Information Disclosure Vulnerability

5.3CVSS4.7AI score0.00317EPSS

Exploits0References8Affected Software1

OSV•added 2019/07/13 12:0 a.m.•1 views

UBUNTU-CVE-2018-20852

http.cookiejar.DefaultPolicy.domainreturnok in Lib/http/cookiejar.py in Python before 3.7.3 does not correctly validate the domain: it can be tricked into sending existing cookies to the wrong server. An attacker may abuse this flaw by using a server with a hostname that has another valid hostnam...

5.3CVSS6.8AI score0.01665EPSS

Exploits1References6