Vulnerabilities > Files or Directories Accessible to External Parties
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-09 | CVE-2023-29107 | Files or Directories Accessible to External Parties vulnerability in Siemens 6Gk1411-1Ac00 Firmware and 6Gk1411-5Ac00 Firmware A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions >= V2.0 < V2.1). | 5.3 |
| 2023-03-28 | CVE-2023-28375 | Files or Directories Accessible to External Parties vulnerability in Propumpservice Osprey Pump Controller Firmware 1.01 Osprey Pump Controller version 1.01 is vulnerable to an unauthenticated file disclosure. | 7.5 |
| 2023-03-28 | CVE-2023-23330 | Files or Directories Accessible to External Parties vulnerability in Amano Xoffice 7.1.3879 amano Xparc parking solutions 7.1.3879 was discovered to be vulnerable to local file inclusion. | 7.5 |
| 2023-03-10 | CVE-2023-1246 | Files or Directories Accessible to External Parties vulnerability in Saysis Starcities 1.1/1.3 Files or Directories Accessible to External Parties vulnerability in Saysis Starcities allows Collect Data from Common Resource Locations.This issue affects Starcities: through 1.3. | 7.5 |
| 2023-03-09 | CVE-2023-26948 | Files or Directories Accessible to External Parties vulnerability in Onekeyadmin 1.3.9 onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/file/download. | 7.5 |
| 2023-03-08 | CVE-2023-26956 | Files or Directories Accessible to External Parties vulnerability in Onekeyadmin 1.3.9 onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/curd/code. | 7.5 |
| 2023-02-22 | CVE-2023-22974 | Files or Directories Accessible to External Parties vulnerability in Open-Emr Openemr A Path Traversal in setup.php in OpenEMR < 7.0.0 allows remote unauthenticated users to read arbitrary files by controlling a connection to an attacker-controlled MySQL server. | 7.5 |
| 2023-02-17 | CVE-2023-0822 | Files or Directories Accessible to External Parties vulnerability in Deltaww Diaenergie The affected product DIAEnergie (versions prior to v1.9.03.001) contains improper authorization, which could allow an unauthorized user to bypass authorization and access privileged functionality. | 8.8 |
| 2023-02-06 | CVE-2022-44343 | Files or Directories Accessible to External Parties vulnerability in Crmeb 4.4.4 CRMEB 4.4.4 is vulnerable to Any File download. | 7.5 |
| 2023-02-01 | CVE-2022-48094 | Files or Directories Accessible to External Parties vulnerability in Lmxcms 1.41 lmxcms v1.41 was discovered to contain an arbitrary file read vulnerability via TemplateAction.class.php. | 4.9 |