Lucene search
+L

241 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1837

Malware in sbrugna...

5CVSS7.5AI score0.04534EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-1839

Malware in sbrugna...

5CVSS7.5AI score0.02119EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2002-1840

Malware in sbrugna...

5CVSS7.5AI score0.02119EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2002-1836

Malware in sbrugna...

5CVSS7.5AI score0.02119EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2001-1489

Malware in sbrugna...

6.4CVSS6.4AI score0.02062EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-0179

Malware in sbrugna...

5CVSS6.4AI score0.01309EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1834

Malware in sbrugna...

5CVSS7.5AI score0.02178EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-1426

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.06559EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-30819

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.01275EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 11:21 p.m.5 views

CVE-2022-45129

Payara before 2022-11-04, when deployed to the root context, allows attackers to visit META-INF and WEB-INF, a different vulnerability than CVE-2022-37422. This affects Payara Platform Community before 4.1.2.191.38, 5.x before 5.2022.4, and 6.x before 6.2022.1, and Payara Platform Enterprise befo...

7.5CVSS7AI score0.01337EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:39 p.m.8 views

CVE-2021-30638

Information Exposure vulnerability in context asset handling of Apache Tapestry allows an attacker to download files inside WEB-INF if using a specially-constructed URL. This was caused by an incomplete fix for CVE-2020-13953. This issue affects Apache Tapestry Apache Tapestry 5.4.0 version to...

7.5CVSS6.8AI score0.06559EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:25 p.m.12 views

CVE-2002-1861

Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

5CVSS7AI score0.02119EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:25 p.m.8 views

CVE-2002-1860

Pramati Server 3.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

5CVSS7AI score0.02119EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:25 p.m.10 views

CVE-2002-1858

Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through 9.0.2.0.1, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

5CVSS6.7AI score0.04534EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:25 p.m.9 views

CVE-2002-1856

HP Application Server 8.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

5CVSS7AI score0.03709EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:25 p.m.8 views

CVE-2002-1855

Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

5CVSS7AI score0.02178EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.6 views

The vulnerability of the N-able N-central monitoring and management platform for IT infrastructure lies in the incorrect restriction on the path name to the catalog, allowing attackers to read arbitrary files.

The vulnerability of the N-able N-central monitoring and management platform relates to an incorrect limitation on the path name for the /WEB-INF directory in the Apache Tomcat application. Exploiting this vulnerability allows a malicious actor to read arbitrary files...

5.3CVSS5.6AI score0.00373EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/03/17 7:15 p.m.3 views

CVE-2024-8510

N-central is vulnerable to a path traversal that allows unintended access to the Apache Tomcat WEB-INF directory. Customer data is not exposed. This vulnerability is present in all deployments of N-central prior to N-central 2024.6...

5.3CVSS5.8AI score0.00373EPSS
Exploits0References2
NVD
NVD
added 2025/03/17 7:15 p.m.16 views

CVE-2024-8510

N-central is vulnerable to a path traversal that allows unintended access to the Apache Tomcat WEB-INF directory. Customer data is not exposed. This vulnerability is present in all deployments of N-central prior to N-central 2024.6...

5.3CVSS0.00373EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/17 7:1 p.m.8 views

CVE-2024-8510 N-central Path Traversal

N-central is vulnerable to a path traversal that allows unintended access to the Apache Tomcat WEB-INF directory. Customer data is not exposed. This vulnerability is present in all deployments of N-central prior to N-central 2024.6...

5.3CVSS6.7AI score0.00373EPSS
Exploits0References2
Rows per page
Query Builder