CWE-548

Exposure of Information Through Directory Listing

Parent: CWE-497 - Exposure of Sensitive System Information to an Unauthorized Control Sphere

The product inappropriately exposes a directory listing with an index of all the resources located inside of the directory.

53 vulnerabilities with CWE-548
CVE-2026-22860 HIGH
Rack <2.2.22/3.1.20/3.2.5 - Path Traversal
CVSS 7.5
CVE-2023-38265 MEDIUM
IBM Cloud Pak System 2.3.3.6-2.3.5.0 - Info Disclosure
CVSS 5.3
CVE-2020-36921 HIGH
RED-V Super Digital Signage System 5.1.1 - Info Disclosure
CVSS 7.5
CVE-2022-50788 HIGH
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x - Info Disclosure
CVSS 7.5
CVE-2021-47718 HIGH
Openbmcs - Information Disclosure
CVSS 7.5
CVE-2024-56464 LOW
IBM QRadar SIEM <7.5.0 UP14 IF01 - Info Disclosure
CVSS 2.7
CVE-2025-13200 MEDIUM
SourceCodester Farm Management System 1.0 - Info Disclosure
CVSS 5.3
CVE-2025-62396 MEDIUM
Moodle - Info Disclosure
CVSS 5.3
CVE-2025-27906 MEDIUM
IBM Content Navigator <3.2.0 - Info Disclosure
CVSS 5.3
CVE-2025-61685 MEDIUM
Mastra <0.13.20-alpha.0 - Path Traversal
CVSS 6.5
CVE-2025-28170 HIGH
Grandstream Networks GXP1628 <=1.0.4.130 - Info Disclosure
CVSS 7.6
CVE-2025-2827 MEDIUM
IBM Sterling File Gateway <6.1.2.6 - Info Disclosure
CVSS 4.3
CVE-2025-27452 MEDIUM
Apache httpd - Info Disclosure
CVSS 5.3
CVE-2025-4909 HIGH
SourceCodester Client DBMS 1.0 - Info Disclosure
CVSS 7.3
CVE-2025-4807 MEDIUM
SourceCodester Online Student Clearance System 1.0 - Info Disclosure
CVSS 5.3
CVE-2025-1138 MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
CVSS 4.3
CVE-2025-45320 MEDIUM
Kashipara Online Service Management Portal V1.0 - Info Disclosure
CVSS 5.3
CVE-2025-23378 LOW
Dell Powerscale Onefs < 9.10.0.0 - Information Disclosure
CVSS 3.3
CVE-2025-2652 MEDIUM
SourceCodester Employee and Visitor Gate Pass Logging System 1.0 - ...
CVSS 5.3
CVE-2025-2651 MEDIUM
SourceCodester Online Eyewear Shop 1.0 - Info Disclosure
CVSS 5.3
CVE-2025-2038 HIGH
Blood Bank Management System 1.0 - Info Disclosure
CVSS 7.3
CVE-2024-28766 LOW
IBM Security Directory Integrator <7.2.0, IBM Security Verify Direc...
CVSS 2.4
CVE-2024-35113 MEDIUM
IBM Control Center <6.3.1 - Info Disclosure
CVSS 4.3
CVE-2024-8711 MEDIUM
SourceCodester Food Ordering Management System 1.0 - Info Disclosure
CVSS 5.3
CVE-2024-45096 MEDIUM
IBM Aspera Faspex <5.0.10 - Info Disclosure
CVSS 6.5
Details
Vulnerabilities 53
Links
MITRE CWE Entry Search this CWE With Exploits