Vulnerabilities > Files or Directories Accessible to External Parties

DATE CVE VULNERABILITY TITLE RISK
2023-03-28 CVE-2023-23330 Files or Directories Accessible to External Parties vulnerability in Amano Xoffice 7.1.3879
amano Xparc parking solutions 7.1.3879 was discovered to be vulnerable to local file inclusion.
network
low complexity
amano CWE-552
7.5
2023-03-10 CVE-2023-1246 Files or Directories Accessible to External Parties vulnerability in Saysis Starcities 1.1/1.3
Files or Directories Accessible to External Parties vulnerability in Saysis Starcities allows Collect Data from Common Resource Locations.This issue affects Starcities: through 1.3.
network
low complexity
saysis CWE-552
7.5
2023-03-09 CVE-2023-26948 Files or Directories Accessible to External Parties vulnerability in Onekeyadmin 1.3.9
onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/file/download.
network
low complexity
onekeyadmin CWE-552
7.5
2023-03-08 CVE-2023-26956 Files or Directories Accessible to External Parties vulnerability in Onekeyadmin 1.3.9
onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/curd/code.
network
low complexity
onekeyadmin CWE-552
7.5
2023-02-22 CVE-2023-22974 Files or Directories Accessible to External Parties vulnerability in Open-Emr Openemr
A Path Traversal in setup.php in OpenEMR < 7.0.0 allows remote unauthenticated users to read arbitrary files by controlling a connection to an attacker-controlled MySQL server.
network
low complexity
open-emr CWE-552
7.5
2023-02-17 CVE-2023-0822 Files or Directories Accessible to External Parties vulnerability in Deltaww Diaenergie
The affected product DIAEnergie (versions prior to v1.9.03.001) contains improper authorization, which could allow an unauthorized user to bypass authorization and access privileged functionality.
network
low complexity
deltaww CWE-552
8.8
2023-02-06 CVE-2022-44343 Files or Directories Accessible to External Parties vulnerability in Crmeb 4.4.4
CRMEB 4.4.4 is vulnerable to Any File download.
network
low complexity
crmeb CWE-552
7.5
2023-02-01 CVE-2022-48094 Files or Directories Accessible to External Parties vulnerability in Lmxcms 1.41
lmxcms v1.41 was discovered to contain an arbitrary file read vulnerability via TemplateAction.class.php.
network
low complexity
lmxcms CWE-552
4.9
2023-02-01 CVE-2022-48161 Files or Directories Accessible to External Parties vulnerability in Easy Images Project Easy Images 2.0
Easy Images v2.0 was discovered to contain an arbitrary file download vulnerability via the component /application/down.php.
network
low complexity
easy-images-project CWE-552
7.5
2023-01-18 CVE-2022-47950 Files or Directories Accessible to External Parties vulnerability in multiple products
An issue was discovered in OpenStack Swift before 2.28.1, 2.29.x before 2.29.2, and 2.30.0.
network
low complexity
openstack debian CWE-552
6.5