Fallos del tipo CWE-219
6 resultadosCVE-2002-2024MEDIUMHorde IMP 2.2.7 allows remote attackers to obtain the full web root pathname via an HTTP request for (1) poppassd.php3, (2) login.php3?reasoEPSS 1.9%CVE-2022-21236HIGHAn information disclosure vulnerability exists due to a web server misconfiguration in the Reolink RLC-410W v3.0.0.136_20121102. A speciallyEPSS 1.8%CVE-2024-56159HIGHServer source code is exposed to the public if sourcemaps are enabledEPSS 1.5%CVE-2022-36306—An authenticated attacker can enumerate and download sensitive files, including the eNodeB's web management UI's TLS private key, the web seEPSS 0.8%CVE-2023-39467MEDIUMTriangle MicroWorks SCADA Data Gateway certificate Information Disclosure VulnerabilityEPSS 0.5%CVE-2024-39776HIGHAvtec Outpost Storage of File with Sensitive Data Under Web RootEPSS 0.4%