Lucene search
K

94 matches found

OSV
OSV
added 2026/06/05 10:43 a.m.4 views

MINI-X556-5RJ5-8265

Bulletin has no description...

7.5CVSS5.2AI score0.00273EPSS
Exploits0
OSV
OSV
added 2026/06/04 4:25 p.m.4 views

MINI-8265-9QHM-8F8G

Bulletin has no description...

5.3CVSS5.7AI score0.0037EPSS
Exploits0
Circl
Circl
added 2026/05/11 6:53 a.m.12 views

CVE-2026-8265

creationtimestamp| type| source ---|---|--- 2026-05-11 06:53:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlkotkxbam2v...

7.2CVSS5.8AI score0.04412EPSS
Exploits1References1
CVE
CVE
added 2026/05/11 2:30 a.m.22 views

CVE-2026-8265

The CVE-2026-8265 issue affects Tenda AC6 firmware version 15.03.06.23. The vulnerable component is httpd, specifically the function get_log_file in /goform/getLogFile, where manipulating the wans.flag argument leads to an OS command injection. The vulnerability is exploitable remotely and exploi...

7.2CVSS5.6AI score0.04412EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/17 9:31 p.m.6 views

Ray Dashboard is vulnerable to path traversal through its static file handling mechanism

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

8.7CVSS7.7AI score0.00929EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2026/03/17 9:31 p.m.6 views

EUVD-2026-12635

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

8.7CVSS5.8AI score0.00929EPSS
Exploits1References4
PyPA
PyPA
added 2026/03/17 8:16 p.m.13 views

PYSEC-2026-130

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

8.7CVSS7.3AI score0.00929EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/03/17 8:16 p.m.6 views

PYSEC-2026-130

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

7.5CVSS7.3AI score0.00929EPSS
Exploits1References4
NVD
NVD
added 2026/03/17 8:16 p.m.3 views

CVE-2026-32981

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

8.7CVSS0.00929EPSS
Exploits1References11
ATTACKERKB
ATTACKERKB
added 2026/03/17 7:33 p.m.3 views

CVE-2026-32981

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

8.7CVSS5.8AI score0.00929EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/17 7:33 p.m.1 views

CVE-2026-32981 Ray Dashboard <= 2.8.0 Path Traversal Leading to Local File Disclosure

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

8.7CVSS5.8AI score0.00929EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.5 views

PT-2026-25933

A path traversal vulnerability was identified in Ray Dashboard default port 8265 in Ray versions prior to 2.8.1. Due to improper validation and sanitization of user-supplied paths in the static file handling mechanism, an attacker can use traversal sequences e.g., ../ to access files outside the...

8.7CVSS5.8AI score0.00929EPSS
Exploits1References7
Packet Storm
Packet Storm
added 2026/02/18 12:0 a.m.125 views

📄 Ray 2.8.0 Path Traversal

A path traversal vulnerability was identified in versions prior to 2.8.1 of Ray affecting the Ray Dashboard service default port 8265. The issue stems from improper validation and sanitization of user-supplied file paths within the static file handling mechanism. By manipulating path traversal...

5.5AI score
Exploits0
GithubExploit
GithubExploit
added 2025/10/28 8:4 p.m.139 views

Exploit for OS Command Injection in Ray_Project Ray

It is an offensive tool for a vulnerable Ray Dashboard. The targ...

9.8CVSS8.3AI score0.7463EPSS
Exploits15
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-8265 Malicious code in @landmineaknpm2/impedit-optio-corrupti (npm)

The package @landmineaknpm2/impedit-optio-corrupti was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/07/30 8:32 a.m.15 views

CVE-2025-8265

A vulnerability classified as critical has been found in 299Ko CMS 2.0.0. This affects an unknown part of the file /admin/filemanager/view of the component File Management. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclose...

5.8CVSS7AI score0.0034EPSS
Exploits0References1
Circl
Circl
added 2025/07/28 1:32 p.m.11 views

CVE-2025-8265

creationtimestamp| type| source ---|---|--- 2025-07-28 13:32:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3luzpdgqxho2w...

5.8CVSS4.8AI score0.0034EPSS
Exploits0References1
NVD
NVD
added 2025/07/28 9:15 a.m.27 views

CVE-2025-8265

A vulnerability classified as critical has been found in 299Ko CMS 2.0.0. This affects an unknown part of the file /admin/filemanager/view of the component File Management. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclose...

5.8CVSS0.0034EPSS
Exploits0References4
CVE
CVE
added 2025/07/28 8:2 a.m.26 views

CVE-2025-8265

CVE-2025-8265 affects 299Ko CMS 2.0.0 in the File Management component, specifically the /admin/filemanager/view path. The issue enables unrestricted file upload due to a root-cause in that view, allowing remote initiation. Multiple sources confirm a publicly disclosed exploit and that the vendor...

5.8CVSS4.8AI score0.0034EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/07/28 8:2 a.m.2 views

CVE-2025-8265 299Ko CMS File Management view unrestricted upload

A vulnerability classified as critical has been found in 299Ko CMS 2.0.0. This affects an unknown part of the file /admin/filemanager/view of the component File Management. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclose...

5.8CVSS4.8AI score0.0034EPSS
Exploits0References4
Rows per page
Query Builder