Vulnerabilities > Information Exposure
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2019-7436 | Information Exposure vulnerability in Opensource Classified ADS Script Project Opensource Classified ADS Script 3.2.2 PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct request for a listing of an uploads directory. | 6.5 |
| 2019-03-21 | CVE-2019-7434 | Information Exposure vulnerability in Rental Bike Script Project Rental Bike Script 2.0.3 PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory. | 6.5 |
| 2019-03-21 | CVE-2019-7431 | Information Exposure vulnerability in Image Sharing Script Project Image Sharing Script 1.3.4 PHP Scripts Mall Image Sharing Script 1.3.4 has directory traversal via a direct request for a listing of an uploads directory. | 6.5 |
| 2019-03-21 | CVE-2019-7429 | Information Exposure vulnerability in Property Rental Software Project Property Rental Software 2.1.4 PHP Scripts Mall Property Rental Software 2.1.4 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2016/08 directory. | 6.5 |
| 2019-03-21 | CVE-2018-20555 | Information Exposure vulnerability in Designchemical Social Network Tabs 1.7.1 The Design Chemical Social Network Tabs plugin 1.7.1 for WordPress allows remote attackers to discover Twitter access_token, access_token_secret, consumer_key, and consumer_secret values by reading the dcwp_twitter.php source code. | 9.8 |
| 2019-03-21 | CVE-2018-19487 | Information Exposure vulnerability in Wp-Jobhunt Project Wp-Jobhunt The WP-jobhunt plugin before version 2.4 for WordPress does not control AJAX requests sent to the cs_employer_ajax_profile() function through the admin-ajax.php file, which allows remote unauthenticated attackers to enumerate information about users. | 7.5 |
| 2019-03-21 | CVE-2018-18762 | Information Exposure vulnerability in Saltos 3.1 SaltOS 3.1 r8126 contains a database download vulnerability. | 6.5 |
| 2019-03-21 | CVE-2018-17502 | Information Exposure vulnerability in Thereceptionist the Receptionist for Ipad 4.0.4 The Receptionist for iPad could allow a local attacker to obtain sensitive information, caused by an error in the contact.json file. | 3.3 |
| 2019-03-21 | CVE-2018-17484 | Information Exposure vulnerability in Jollytech Lobby Track 8.2.186 Lobby Track Desktop could allow a local attacker to obtain sensitive information, caused by an error in Sample Database.mdb database while in kiosk mode. | 7.1 |
| 2019-03-21 | CVE-2018-17483 | Information Exposure vulnerability in Jollytech Lobby Track 8.2.186 Lobby Track Desktop could allow a local attacker to obtain sensitive information, caused by an error in Reports while in kiosk mode. | 5.5 |