Lucene search
K

44532 matches found

Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.15 views

PT-2026-39282

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.1.124 Description An issue exists in the self-hosted artificial intelligence platform where the application fails to validate or sanitize the filename during file uploads. When attaching files to a prompt via the...

7.3CVSS5.9AI score0.00336EPSS
Exploits1References6
Packet Storm
Packet Storm
added 2026/05/08 12:0 a.m.71 views

📄 Dash-Uploader 0.7.0a2 Path Traversal

There is an unauthenticated path traversal in dash-uploader versions 0.1.0 through 0.7.0a2 allowing arbitrary file write, leading to but not limited to remote code execution, application source code overwrite, stored cross site scripting, and persistent backdoor installation. CVE-2026-38360: Path...

9.8CVSS5.8AI score0.05982EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-39817

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The go tool pack subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a...

5.9CVSS5.7AI score0.0017EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/07 9:30 p.m.32 views

EUVD-2026-28421

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9AI score0.0017EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2026/05/07 8:32 p.m.93 views

Exploit for CVE-2026-38360

CVE-2026-38360: Path Traversal in dash-uploader !CVEhttps...

6AI score0.05982EPSS
Exploits5
Microsoft Secure
Microsoft Secure
added 2026/05/07 8:22 p.m.8 views

When prompts become shells: RCE vulnerabilities in AI agent frameworks

In this article 1. A representative case study: Semantic Kernel 2. CVE-2026-26030: In-Memory Vector Store 3. CVE-2026-25592: Arbitrary file write through SessionsPythonPlugin 4. The vulnerability 5. Attack chain overview 6. Defending the agentic edge 7. Not bugs, but developed by design 8. CTF...

9.9CVSS6.6AI score0.02914EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/05/07 8:21 p.m.7 views

CVE-2026-44111

OpenClaw before 2026.4.15 contains an arbitrary file read vulnerability in the QMD backend memoryget function that allows callers to read any Markdown files within the workspace root. Attackers with access to the memory tool can bypass path restrictions by providing arbitrary workspace Markdown...

4.3CVSS5.9AI score0.00226EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/07 8:21 p.m.9 views

CVE-2026-30816

An external control of configuration vulnerability in the OpenVPN module of TP-Link AX53 v1.0 allows an authenticated adjacent attacker to read arbitrary file when a malicious configuration file is processed. Successful exploitation may allow unauthorized access to arbitrary files on the device,...

6.8CVSS5.9AI score0.00286EPSS
Exploits0References1
NVD
NVD
added 2026/05/07 8:16 p.m.16 views

CVE-2026-39817

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS0.0017EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/07 8:16 p.m.5 views

CVE-2026-39817

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS6AI score0.0017EPSS
Exploits0References7
OSV
OSV
added 2026/05/07 8:16 p.m.3 views

UBUNTU-CVE-2026-39817

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS6AI score0.0017EPSS
Exploits0References8
Snyk
Snyk
added 2026/05/07 7:49 p.m.8 views

Arbitrary File Upload

Overview Affected versions of this package are vulnerable to Arbitrary File Upload via the addImageAction process. An attacker can execute arbitrary code on the server by uploading a file with executable extensions disguised as an image, bypassing MIME type validation. This is only exploitable if...

6.3CVSS6.2AI score0.00229EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/07 7:41 p.m.7 views

CVE-2026-39817 Invoking "go tool pack" does not sanitize output paths in cmd/go

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9AI score0.0017EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/07 7:41 p.m.12 views

CVE-2026-39817

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9AI score0.0017EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/07 7:41 p.m.36 views

CVE-2026-39817 Invoking "go tool pack" does not sanitize output paths in cmd/go

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

0.0017EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/07 7:41 p.m.11 views

CVE-2026-39817

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS5.9AI score0.0017EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/05/07 7:41 p.m.11 views

CVE-2026-39817

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS5.9AI score0.0017EPSS
Exploits0
Snyk
Snyk
added 2026/05/07 7:32 p.m.9 views

Arbitrary File Upload

Overview Affected versions of this package are vulnerable to Arbitrary File Upload via the Plugins::add process. An attacker can execute arbitrary code, overwrite sensitive files, and gain full control of the server by uploading a specially crafted ZIP archive containing file paths with directory...

8.6CVSS6AI score0.00522EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/07 7:32 p.m.11 views

FacturaScripts Vulnerable to Remote Code Execution (RCE) via Zip Slip in Plugin Upload Mechanism

Summary A Critical vulnerability exists in the Plugins::add function. The system fails to properly validate the file paths within uploaded ZIP archives. This allows an attacker to perform a Zip Slip attack, leading to Arbitrary File Write and Remote Code Execution RCE by overwriting sensitive .ph...

7.2CVSS5.8AI score0.00522EPSS
Exploits0References2Affected Software1
Snyk
Snyk
added 2026/05/07 7:21 p.m.6 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal. Go Vulnerability Report: The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the...

8.7CVSS6.3AI score0.0017EPSS
Exploits0References3
Rows per page
Query Builder