Page 279 of 10586 results (0.018 seconds)

CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0

This could lead to local information disclosure with no additional execution privileges needed En imsservice, existe una forma posible de escribir registros de uso de permisos de una aplicación debido a que falta una verificación de permisos. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0

This could lead to local information disclosure with no additional execution privileges needed En imsservice, existe una forma posible de escribir registros de uso de permisos de una aplicación debido a que falta una verificación de permisos. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0

This could lead to local information disclosure with no additional execution privileges needed En imsservice, existe una forma posible de escribir registros de uso de permisos de una aplicación debido a que falta una verificación de permisos. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

This makes it possible for unauthenticated attackers to extract sensitive user or configuration data. • https://patchstack.com/database/vulnerability/appmysite/wordpress-appmysite-create-an-app-with-the-best-mobile-app-builder-plugin-3-10-0-sensitive-data-exposure-vulnerability? • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 2

The Duplicator WordPress plugin before 1.5.7.1, Duplicator Pro WordPress plugin before 4.5.14.2 does not disallow listing the `backups-dup-lite/tmp` directory (or the `backups-dup-pro/tmp` directory in the Pro version), which temporarily stores files containing sensitive data. ... WordPress Duplicator plugin versions prior to 1.5.7.1 suffer from an unauthenticated sensitive data exposure vulnerability that can lead to account takeover. • https://drive.google.com/file/d/1mpapFCqfZLv__EAM7uivrrl2h55rpi1V/view?usp=sharing https://wpscan.com/vulnerability/5c5d41b9-1463-4a9b-862f-e9ee600ef8e1 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-552: Files or Directories Accessible to External Parties •