Falhas do tipo CWE-552
327 resultadosCVE-2024-7107MEDIUMDirectory Traversal in National Keep's CyberMathEPSS 0.3%CVE-2023-41566HIGHOA EKP v16 was discovered to contain an arbitrary download vulnerability via the component /ui/sys_ui_extend/sysUiExtend.do. This vulnerabilEPSS 0.3%CVE-2025-14442MEDIUMSecure Copy Content Protection and Content Locking <= 4.9.2 - Unauthenticated Sensitive Information Exposure via Exposed CSV Export FileEPSS 0.3%CVE-2025-14697MEDIUMShenzhen Sixun Software Sixun Shanghui Group Business Management System ExportFiles file accessEPSS 0.3%CVE-2025-58152MEDIUMFutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and the garbage collection information on the inEPSS 0.3%CVE-2026-5335MEDIUMMagic Export & Import < 1.2.0 - Unauthenticated PII DisclosureEPSS 0.3%CVE-2026-45543MEDIUMNextcloud: Deleting a Forms collaborator share leaves uploaded response files accessible through a lingering Files shareEPSS 0.3%CVE-2020-3476MEDIUMCisco IOS XE Software Arbitrary File Overwrite VulnerabilityEPSS 0.3%CVE-2023-32684LOWIn Lima, a malicious disk image could read a single file on the host filesystem as a qcow2/vmdk backing fileEPSS 0.3%CVE-2018-25164HIGHEverSync 0.5 Arbitrary File Download via files DirectoryEPSS 0.3%CVE-2026-24732MEDIUMImproper permission checks in Extension:NSFileRepoEPSS 0.3%CVE-2023-45594MEDIUMA CWE-552 “Files or Directories Accessible to External Parties” vulnerability in the embedded Chromium browser allows a physical attacker toEPSS 0.3%CVE-2026-33380MEDIUMSQL Expressions Read File From DiskEPSS 0.3%CVE-2025-59976HIGHJunos Space: Arbitrary file download vulnerability in web interfaceEPSS 0.3%CVE-2025-12747MEDIUMTainacan <= 1.0.0 - Unauthenticated Information ExposureEPSS 0.3%CVE-2025-12648MEDIUMWP-Members Membership Plugin <= 3.5.4.4 - Unauthenticated Information Exposure via Unprotected FilesEPSS 0.3%CVE-2021-42744MEDIUMPhilips MRI 1.5T and 3T Information ExposureEPSS 0.3%CVE-2024-29225MEDIUMELECOM wireless LAN routers allow a network-adjacent unauthenticated attacker to obtain the configuration file containing sensitive informatEPSS 0.3%CVE-2026-45088HIGHDalfox: Unauthenticated Arbitrary File Read with Out-of-Band Exfiltration via `custom-payload-file` in Dalfox Server ModeEPSS 0.3%CVE-2025-2222HIGHCWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that could leak
information and potential priviEPSS 0.3%