Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-552

CWE-552

Files or Directories Accessible to External Parties

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product makes files or directories accessible to unauthorized actors, even though they should not be.

474 vulnerabilities with CWE-552

CVE-2020-3476 MEDIUM

Cisco IOS XE - Privilege Escalation

CVE-2020-24312 HIGH

WP File Manager <6.4 - Info Disclosure

CVE-2020-11976 HIGH

Apache Wicket <9.0.0-M5 - Info Disclosure

CVE-2020-4075 MEDIUM

Electron <7.2.4-9.0.0-beta21 - Local File Read

CVE-2020-5356 HIGH

Dell PowerProtect <19.4-3.2 - Auth Bypass

CVE-2020-3267 HIGH

Cisco Unified CCX - Privilege Escalation

CVE-2020-10516 CRITICAL

GitHub Enterprise Server <2.21 - Privilege Escalation

CVE-2020-12743 CRITICAL

Gazie 7.9-7.32 - Unauthenticated Arbitrary File Inclusion via setup.php hidden_req Parameter

CVE-2020-12470 HIGH

MonoX < 5.1.40.5152 - Authenticated Remote Code Execution via ASPX Template Modification

CVE-2020-11469 HIGH

Zoom Client for Meetings <4.6.8 - Privilege Escalation

CVE-2020-5289 MEDIUM

Elide < 4.5.14 - Unauthorized Data Access via Filter Expression Side Channel

CVE-2020-5250 HIGH

PrestaShop <1.7.6.4 - Info Disclosure

CVE-2020-10105 MEDIUM

Zammad 3.0-3.2 - Source Code Disclosure via OPTIONS Request

CVE-2020-1726 MEDIUM

Podman <1.6.0 - Privilege Escalation

CVE-2020-3927 HIGH

ServiSign < 1.0.19.0617 - Arbitrary File Access via Crafted API Parameter

CVE-2020-3926 MEDIUM

ServiSign security plugin - Path Traversal

CVE-2019-25709 CRITICAL

CF Image Hosting Script 1.6.5 Unauthorized Database Access

CVE-2019-25239 HIGH

V-SOL GPON/EPON OLT Platform 2.03 - Info Disclosure

CVE-2019-3897 MEDIUM

Red Hat Certification <6-7 - Info Disclosure

CVE-2019-7306 MEDIUM

byobu - Information Disclosure via Apport Hook

CVE-2019-7305 MEDIUM

eXtplorer < 2.1.0 - Information Exposure via World-Accessible System Directories

CVE-2019-20593 MEDIUM

Samsung Mobile <O - Info Disclosure

CVE-2019-20529 HIGH

Frappe 11-12 - Unauthenticated Sensitive Data Exposure via Prepared Report File Storage

CVE-2019-13941 HIGH

OZW Web Server < V10.00 - Info Disclosure

CVE-2019-19843 CRITICAL

Ruckus Wireless Unleashed <200.7.10.102.64 - Info Disclosure

Previous Page 17 of 19 Next

Details

Vulnerabilities 474

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy