20988 matches found
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal due to insufficient sanitization of directory names ending with a "." in the upload process. An attacker can write files outside the intended datastore directory by crafting directory names that end with "%2E". This ...
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal due to insufficient sanitization of directory names ending with a "." in the upload process. An attacker can write files outside the intended datastore directory by crafting directory names that end with "%2E". This ...
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal due to insufficient sanitization of directory names ending with a "." in the upload process. An attacker can write files outside the intended datastore directory by crafting directory names that end with "%2E". This ...
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal due to insufficient sanitization of directory names ending with a "." in the upload process. An attacker can write files outside the intended datastore directory by crafting directory names that end with "%2E". This ...
curl: SMTP CRLF Injection & Protocol Desynchronization in libcurl
Executive Summary A critical security vulnerability has been identified in libcurl's SMTP protocol handler. The vulnerability allows for SMTP Command Smuggling and Protocol Desynchronization by injecting CRLF sequences into email address fields. This can be exploited to bypass security controls,...
Security Bulletin: Vulnerability in Spring Framework MVC affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.
Summary Potential vulnerability in Spring Framework MVC has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information...
Exploit for Improper Encoding or Escaping of Output in Git
CVE-2024-52005: ANSI Escape Sequence Injection in Git Over...
Alibaba Cloud Linux 3 : 0197: httpd:2.4 (ALINUX3-SA-2025:0197)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0197 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-55753: An integer overflow in the...
curl: CRLF Injection / Protocol Smuggling in libcurl via CURLOPT_USERNAME (IMAP)
Summary: I have discovered a CRLF injection vulnerability in the IMAP protocol implementation of libcurl. The vulnerability exists because the imapatom function in lib/imap.c fails to properly sanitize or quote Carriage Return \r and Line Feed \n characters when processing the CURLOPTUSERNAME...
Directory Traversal
Overview croogo/croogo is an Open Source CMS built for everyone. Affected versions of this package are vulnerable to Directory Traversal via the edit-file parameter. An attacker can access arbitrary files on the server by supplying a specially crafted path. Details A Directory Traversal attack al...
curl: HTTP/3 Protocol Smuggling and Header Injection via CRLF in QPACK value conversion
A fundamental design flaw exists in how libcurl handles HTTP/3 QUIC response headers across all supported backends ngtcp2, quiche, openssl-quic. The vulnerability stems from the unsafe transcoding of binary QPACK headers HTTP/3 into the textual HTTP/1.1 format used internally by curl's pipeline...
[SECURITY] [DLA 4416-1] rails security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4416-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès December 21, 2025 https://wiki.debian.org/LTS -...
Debian dla-4416 : rails - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4416 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4416-1 [email protected]...
CVE-2025-68358
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix racy bitfield write in btrfsclearspaceinfofull From the memory-barriers.txt document regarding memory barrier ordering guarantees: These guarantees do not apply to bitfields, because compilers often generate code to...
PT-2025-134: Local File Read in OpenPDF
The vulnerability was identified in OpenPDF, version 2.0.4. The discovered vulnerability allows an attacker to read arbitrary files on the server by inserting absolute paths or directory traversal sequences in the HTML‑tag attributes processed by OpenPDF. This enables the disclosure of confidenti...
PT-2025-133: Local File Read in OpenPDF
The vulnerability was identified in OpenPDF, version 2.0.4. The discovered vulnerability allows an attacker to read arbitrary files on the server by inserting absolute paths or directory traversal sequences in the HTML‑tag attributes processed by OpenPDF. This enables the disclosure of confidenti...
Threat landscape for industrial automation systems in Q3 2025
Statistics across all threats In Q3 2025, the percentage of ICS computers on which malicious objects were blocked decreased from the previous quarter by 0.4 pp to 20.1%. This is the lowest level for the observed period. Percentage of ICS computers on which malicious objects were blocked, Q3 2022–...
Exploit for CVE-2025-59532
CVE-2025-59532 Docker Environment A Docker-based research env...
SUSE CVE-2025-68358
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix racy bitfield write in btrfsclearspaceinfofull From the memory-barriers.txt document regarding memory barrier ordering guarantees: These guarantees do not apply to bitfields, because compilers often generate code to...
PT-2026-31940
Name of the Vulnerable Software and Affected Versions Apache Log4j Core versions 2.21.0 through 2.25.3 Description The Rfc5424Layout component is susceptible to log injection via CRLF Carriage Return Line Feed sequences. This occurs because security-relevant configuration attributes were renamed...