Lucene search
K

12 matches found

SUSE CVE
SUSE CVE
added 2026/03/28 12:26 a.m.4 views

SUSE CVE-2026-32758

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.2 and below are vulnerable to Path Traversal through the resourcePatchHandler http/resource.go. The destination path in resourcePatchHandler is...

6.5CVSS5.7AI score0.00387EPSS
Exploits0References3
OSV
OSV
added 2026/03/19 11:45 p.m.3 views

CVE-2026-32761 File Browser has an Authorization Policy Bypass in its Public Share Download Flow

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.0 and below contain a permission enforcement bypass which allows users who are denied download privileges perm.download = false but granted share...

6.5CVSS5.7AI score0.00424EPSS
Exploits1References5
OSV
OSV
added 2026/03/05 9:6 p.m.7 views

CVE-2026-28492 File Browser: Path Traversal in Public Share Links Exposes Files Outside Shared Directory

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to version 2.61.0, when a user creates a public share link for a directory, the withHashFile middleware in http/public.go uses...

7.1CVSS5.7AI score0.00322EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.4 views

CVE-2021-22732

Improper Privilege Management vulnerability exists in homeLYnk Wiser For KNX and spaceLYnk V2.60 and prior which could cause a code execution issue when an attacker loads unauthorized code on the web server...

7.8CVSS7.5AI score0.00263EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.2 views

Siemens POWER METER SICAM Q100和Siemens POWER METER SICAM Q200 安全漏洞

Siemens POWER METER SICAM Q100 and Siemens POWER METER SICAM Q200 are multifunctional power quality recorders from Siemens, Germany. A security vulnerability exists in Siemens POWER METER SICAM Q100 and Siemens POWER METER SICAM Q200 prior to version V2.62, which stems from the plaintext storage ...

6.8CVSS6.5AI score0.00086EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/03/14 2:57 a.m.2 views

SUSE CVE-2025-25204

gh is GitHub's official command line tool. Starting in version 2.49.0 and prior to version 2.67.0, under certain conditions, a bug in GitHub's Artifact Attestation cli tool gh attestation verify causes it to return a zero exit status when no attestations are present. This behavior is incorrect:...

6.3CVSS6.5AI score0.00375EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/25 12:0 a.m.5 views

PT-2024-33667 · Zitadel +1 · Zitadel +1

Name of the Vulnerable Software and Affected Versions: Zitadel versions prior to 2.64.0 Zitadel versions prior to 2.63.5 Zitadel versions prior to 2.62.7 Zitadel versions prior to 2.61.4 Zitadel versions prior to 2.60.4 Zitadel versions prior to 2.59.5 Zitadel versions prior to 2.58.7 Description...

9.9CVSS6.3AI score0.97781EPSS
Exploits21References141
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.3 views

PT-2023-3769 · Siemens · Sicam Q200 +1

Name of the Vulnerable Software and Affected Versions: POWER METER SICAM Q100 versions prior to V2.60 Siemens SICAM Q200 affected versions not specified Description: A vulnerability has been identified where affected devices are missing cookie protection flags when using the default settings. Thi...

5.5CVSS5AI score0.00427EPSS
Exploits0References6
OSV
OSV
added 2022/11/29 5:15 a.m.2 views

CVE-2022-40799

Data Integrity Failure in 'Backup Config' in D-Link DNR-322L = 2.60B15 allows an authenticated attacker to execute OS level commands on the device...

8.8CVSS5.9AI score0.31328EPSS
Exploits3References3
CNNVD
CNNVD
added 2022/02/24 12:0 a.m.4 views

HPE Integrated Lights-Out 4 注入漏洞

HPE Integrated Lights-Out 4 iLO 4 is a remote control solution from Hewlett Packard Enterprise hpe. The solution enables remote monitoring and operation of IT assets such as servers. HPE Integrated Lights-Out 4 suffers from an injection vulnerability that stems from a potential remote host header...

5.3CVSS5.9AI score0.00675EPSS
Exploits0References2
OSV
OSV
added 2021/05/26 8:15 p.m.5 views

CVE-2021-22736

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists in homeLYnk Wiser For KNX and spaceLYnk V2.60 and prior which could cause a denial of service when an unauthorized file is uploaded...

7.5CVSS7.1AI score0.01134EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/27 12:0 a.m.3 views

HPE Integrated Lights Out (iLO) Override Vulnerability

HPE Integrated Lights-Out 4 iLO 4 and Integrated Lights-Out 5 iLO 5 are both embedded server management technologies from Hewlett Packard Enterprise HPE that use an integrated remote management port to monitor and maintain the server operation, remote control of the server, and more through an...

9CVSS7.2AI score0.0681EPSS
Exploits0References1
Rows per page
Query Builder