Lucene search
K

44531 matches found

Cvelist
Cvelist
added 2026/05/10 12:43 p.m.31 views

CVE-2021-47940 WordPress Download From Files 1.48 Arbitrary File Upload

WordPress Plugin Download From Files version 1.48 and earlier contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by exploiting the AJAX fileupload action. Attackers can send POST requests to the admin-ajax.php endpoint with the...

9.8CVSS0.00396EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/10 12:43 p.m.12 views

CVE-2021-47940 WordPress Download From Files 1.48 Arbitrary File Upload

WordPress Plugin Download From Files version 1.48 and earlier contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by exploiting the AJAX fileupload action. Attackers can send POST requests to the admin-ajax.php endpoint with the...

9.8CVSS5.9AI score0.00396EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/10 12:43 p.m.10 views

CVE-2021-47933

WordPress MStore API 2.0.6 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to the REST API endpoint. Attackers can upload PHP files with arbitrary names to the configfile endpoint to achieve remote code...

9.8CVSS6.5AI score0.00587EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/10 12:43 p.m.14 views

CVE-2021-47933

CVE-2021-47933 affects WordPress MStore API 2.0.6, where an arbitrary file upload vulnerability exists. An unauthenticated attacker can send POST requests to the REST API endpoint and upload PHP files with arbitrary names to the config_file endpoint, enabling remote code execution on the server. ...

9.8CVSS6.5AI score0.00587EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/10 12:43 p.m.37 views

CVE-2021-47933 WordPress MStore API 2.0.6 Arbitrary File Upload

WordPress MStore API 2.0.6 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to the REST API endpoint. Attackers can upload PHP files with arbitrary names to the configfile endpoint to achieve remote code...

9.8CVSS0.00587EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/10 12:43 p.m.12 views

CVE-2021-47933 WordPress MStore API 2.0.6 Arbitrary File Upload

WordPress MStore API 2.0.6 contains an arbitrary file upload vulnerability that allows unauthenticated attackers to upload malicious files by sending POST requests to the REST API endpoint. Attackers can upload PHP files with arbitrary names to the configfile endpoint to achieve remote code...

9.8CVSS6.5AI score0.00587EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.7 views

WordPress plugin amministrazione-aperta 路径遍历漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

6.9CVSS5.9AI score0.00152EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/10 12:0 a.m.9 views

WordPress plugin Download From Files 访问控制错误漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

9.8CVSS5.9AI score0.00396EPSS
Exploits0References1
OSV
OSV
added 2026/05/09 12:33 p.m.8 views

OESA-2026-2283 sed security update

Sed is a non-interactive command-line text editor. A stream editor is used to per-form basic text transformations on an input stream a file or input from a pipeline. Security Fixes: When sed is invoked with both -i in-place edit and --follow-symlinks, the function opennextfile performs two...

2.1CVSS5.9AI score0.00142EPSS
Exploits0References2
OSV
OSV
added 2026/05/09 12:33 p.m.8 views

OESA-2026-2282 sed security update

Sed is a non-interactive command-line text editor. A stream editor is used to per-form basic text transformations on an input stream a file or input from a pipeline. Security Fixes: When sed is invoked with both -i in-place edit and --follow-symlinks, the function opennextfile performs two...

2.1CVSS5.9AI score0.00142EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/09 2:43 a.m.8 views

SUSE CVE-2026-39817

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS5.9AI score0.0017EPSS
Exploits0References14
Snyk
Snyk
added 2026/05/08 11:50 p.m.10 views

Directory Traversal

Overview SharpCompress is a compression library for NET Standard 2.0/2.1/NET 5.0 that can unrar, decompress 7zip, decompress xz, zip/unzip, tar/untar lzip/unlzip, bzip2/unbzip2 and gzip/ungzip with forward-only reading and file random access APIs. Affected versions of this package are vulnerable ...

6.5CVSS6.3AI score0.00313EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/05/08 11:50 p.m.11 views

SharpCompress has directory traversal via directory entries in WriteToDirectory (zip slip variant)

Summary A path traversal vulnerability in IArchive.WriteToDirectory allows a malicious archive to create directories outside the intended extraction root. For TAR archives, this can be escalated to arbitrary file writes by chaining with a symlink entry, giving a full write primitive on the target...

6.5CVSS6AI score0.00313EPSS
Exploits1References2Affected Software1
Snyk
Snyk
added 2026/05/08 11:33 p.m.8 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal in validatefilepath in viewcomponentssystemtestcontroller.rb, which is accessible via the system test entrypoint. An attacker with access to this endpoint, which is mounted in Rails.env.test?, can read files in a...

7.5CVSS6.2AI score0.00412EPSS
Exploits1References2
OSV
OSV
added 2026/05/08 10:38 p.m.4 views

GHSA-9PGH-J74G-QJ6M Open WebUI Vulnerable to Arbitrary File Upload and Path Traversal

CONFIDENTIAL KL-CAN-2024-002 Vulnerability Details | | Field | Value | |---|-------|-------| | 1 | Discoverer | Jaggar Henry & Sean Segreti of KoreLogic, Inc. | | 2 | Date Submitted | 2024.03.12 | | 3 | Title | Open WebUI Arbitrary File Upload + Path Traversal | | 5 | Affected Vendor | Open WebUI...

7.3CVSS6.2AI score0.00336EPSS
Exploits1References3
Snyk
Snyk
added 2026/05/08 10:38 p.m.9 views

Arbitrary File Upload

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Arbitrary File Upload via the storedoc process. An attacker can write arbitrary files to locations outside the intended upload directory by supplying crafted filenames containing path traversal sequences in t...

9.8CVSS6.5AI score0.00336EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/05/08 10:38 p.m.10 views

Open WebUI Vulnerable to Arbitrary File Upload and Path Traversal

CONFIDENTIAL KL-CAN-2024-002 Vulnerability Details | | Field | Value | |---|-------|-------| | 1 | Discoverer | Jaggar Henry & Sean Segreti of KoreLogic, Inc. | | 2 | Date Submitted | 2024.03.12 | | 3 | Title | Open WebUI Arbitrary File Upload + Path Traversal | | 5 | Affected Vendor | Open WebUI...

9.8CVSS6.2AI score0.00336EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/05/08 10:22 p.m.13 views

EUVD-2026-28517

Kimai has an arbitrary file read in its invoice PDF renderer admin...

4.9CVSS5.9AI score0.00278EPSS
Exploits0References3
OSV
OSV
added 2026/05/08 10:22 p.m.5 views

GHSA-H5FH-7HWR-97MW Kimai has an arbitrary file read in its invoice PDF renderer (admin)

Summary Users with the role System-Admin ROLESYSTEADMIN and the permission uploadinvoicetemplate can upload PDF invoice templates, which can call pdfContext.setOption'associatedfiles', ... inside the sandboxed Twig render. This is forwarded to mPDF's SetAssociatedFiles, whose writer calls...

4.1CVSS5.8AI score0.00278EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 9:31 p.m.8 views

EUVD-2026-28810

Insufficient input validation of the feature file name in feature::LOADFEATUREFILE adminbin call can cause arbitrary file read when a relative file path is passed...

4.3CVSS5.9AI score0.00435EPSS
Exploits0References2
Rows per page
Query Builder