Search Vulnerabilities

AVer PTC cameras Files or Directories Accessible to External Parties

File Disclosure in ABB T-MAC Plus web application and in ABB T-MAC plus Server - Default IIS Web Site

Nextcloud: Deleting a Forms collaborator share leaves uploaded response files accessible through a lingering Files share

MacGregor Voyage Data Recorder (VDR) G4e Files or Directories Accessible to External Parties

Dalfox: Unauthenticated Arbitrary File Read with Out-of-Band Exfiltration via `custom-payload-file` in Dalfox Server Mode

Files or directories accessible to external parties vulnerability in redis-server component in Synology BeeDrive for desktop before 1

Algernon: handler.lua discovery walks parent directories above the server root

Apache Flink Kubernetes Operator: Server-Side Request Forgery and local file access in Kubernetes Operator

Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified

iControl SOAP vulnerability

BIG-IP iControl SOAP vulnerability

Microsoft Teams Spoofing Vulnerability

Microsoft Word Information Disclosure Vulnerability

PaperCut NG/MF: Path Traversal in Shared Account Synchronization

ChurchCRM: Authenticated Remote Code Execution via Unrestricted PHP File Write in Database Restore Function

Unauthorized Arbitrary File Read via RMI in AdminServer Interface

CF Image Hosting Script 1.6.5 Unauthorized Database Access

Chamilo LMS affected by unauthenticated RCE in main/install folder

A files or directories accessible to external parties vulnerability in Synology SSL VPN Client before 1

LORIS has a path traversal in FilesDownloadHandler