Lucene search
+L

45 matches found

CVE
CVE
added 2023/12/18 1:0 a.m.45 views

CVE-2023-6908

DFIRKuiper Kuiper 2.3.4 contains a path-traversal vulnerability in the TAR Archive Handler’s unzip_file function (kuiper/app/controllers/case_management.py). Manipulating the dst_path argument enables traversal, and remote initiation is possible with high attack complexity and no required privile...

5.9CVSS4.8AI score0.00755EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/12/18 1:0 a.m.21 views

CVE-2023-6908 DFIRKuiper TAR Archive case_management.py unzip_file path traversal

A vulnerability, which was classified as problematic, was found in DFIRKuiper Kuiper 2.3.4. This affects the function unzipfile of the file kuiper/app/controllers/casemanagement.py of the component TAR Archive Handler. The manipulation of the argument dstpath leads to path traversal. It is possib...

3.1CVSS4.7AI score0.00755EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/12/18 12:0 a.m.8 views

PT-2023-32816 · Unknown · Dfirkuiper Kuiper

Name of the Vulnerable Software and Affected Versions: DFIRKuiper Kuiper version 2.3.4 Description: A problematic issue was found in the TAR Archive Handler component, specifically affecting the unzip file function of the case management.py file. The manipulation of the dst path argument leads to...

5.9CVSS4.4AI score0.00755EPSS
Exploits0References8
NVD
NVD
added 2023/12/16 11:15 a.m.24 views

CVE-2023-6851

A vulnerability was found in kalcaddle KodExplorer up to 4.51.03. It has been rated as critical. This issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler. The manipulation leads to code injection. The attack may be initiated remotely. The...

9.8CVSS0.0091EPSS
Exploits0References5
Prion
Prion
added 2023/12/16 11:15 a.m.14 views

Code injection

A vulnerability was found in kalcaddle KodExplorer up to 4.51.03. It has been rated as critical. This issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler. The manipulation leads to code injection. The attack may be initiated remotely. The...

6.5CVSS7.9AI score0.0091EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2023/12/16 11:0 a.m.63 views

CVE-2023-6851

The CVE-2023-6851 vulnerability affects kalcaddle KodExplorer up to version 4.51.03, specifically the ZIP Archive Handler's function unzipList in plugins/zipView/app.php. The issue enables code injection, with remote exploitation and publicly disclosed exploit details. Mitigation: upgrade to vers...

9.8CVSS8.5AI score0.0091EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/12/16 11:0 a.m.17 views

CVE-2023-6851 kalcaddle KodExplorer ZIP Archive app.php unzipList code injection

A vulnerability was found in kalcaddle KodExplorer up to 4.51.03. It has been rated as critical. This issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler. The manipulation leads to code injection. The attack may be initiated remotely. The...

6.3CVSS6.2AI score0.0091EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/12/16 12:0 a.m.7 views

PT-2023-32792 · Kalcaddle · Kodexplorer

Name of the Vulnerable Software and Affected Versions: kalcaddle KodExplorer versions up to 4.51.03 Description: A critical issue affects the function unzipList of the file plugins/zipView/app.php of the component ZIP Archive Handler, leading to code injection. The attack may be initiated remotel...

9.8CVSS7.1AI score0.0091EPSS
Exploits0References10
CNNVD
CNNVD
added 2023/09/22 12:0 a.m.5 views

WithSecure products Security breaches

WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure products, which originates in the lhz archive unpack handler program that allows a local user to perform a denial of service on a system and bypass security...

7.8CVSS6.3AI score0.00151EPSS
Exploits0References3
NVD
NVD
added 2023/01/07 1:15 p.m.12 views

CVE-2022-4880

A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects the function VoicebankInstaller of the file OpenUtau.Core/Classic/VoicebankInstaller.cs of the component ZIP Archive Handler. The manipulation leads to path traversal. Upgrading to version 0.0.991 is...

9.8CVSS6.7AI score0.01063EPSS
Exploits0References5
Prion
Prion
added 2023/01/07 1:15 p.m.19 views

Path traversal

A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects the function VoicebankInstaller of the file OpenUtau.Core/Classic/VoicebankInstaller.cs of the component ZIP Archive Handler. The manipulation leads to path traversal. Upgrading to version 0.0.991 is...

7.5CVSS9.4AI score0.01063EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2023/01/07 12:55 p.m.61 views

CVE-2022-4880

Summary: CVE-2022-4880 affects stakira OpenUtau, specifically the ZIP Archive Handler’s VoicebankInstaller function (OpenUtau.Core/Classic/VoicebankInstaller.cs). The vulnerability is a path traversal issue in versions prior to 0.0.991. Impact as stated: critical severity with path traversal risk...

9.8CVSS7.6AI score0.01063EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2023/01/07 12:55 p.m.17 views

CVE-2022-4880 stakira OpenUtau ZIP Archive VoicebankInstaller.cs VoicebankInstaller path traversal

A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects the function VoicebankInstaller of the file OpenUtau.Core/Classic/VoicebankInstaller.cs of the component ZIP Archive Handler. The manipulation leads to path traversal. Upgrading to version 0.0.991 is...

5.5CVSS6AI score0.01063EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/01/07 12:0 a.m.7 views

OpenUtau 路径遍历漏洞

OpenUtau is an open source editing environment with a modern user experience for the UTAU community from the individual developers at StAkira. A path traversal vulnerability exists in stakira OpenUtau versions prior to 0.0.991, which originates in the function VoicebankInstaller in the file...

9.8CVSS6.3AI score0.01063EPSS
Exploits0References6
NVD
NVD
added 2023/01/05 8:15 a.m.19 views

CVE-2019-25098

A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknown part of the file include/archive.php of the component Archive Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The...

9.8CVSS7.5AI score0.01015EPSS
Exploits0References4
Prion
Prion
added 2023/01/05 8:15 a.m.16 views

Path traversal

A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknown part of the file include/archive.php of the component Archive Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The...

7.5CVSS9.5AI score0.01015EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2023/01/05 8:15 a.m.34 views

CVE-2019-25098

A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknown part of the file include/archive.php of the component Archive Handler. The manipulation leads to path traversal. Upgrading to version 2.1.13 is able to address this issue. The...

9.8CVSS6.1AI score0.01015EPSS
Exploits0References2
CVE
CVE
added 2023/01/05 7:59 a.m.52 views

CVE-2019-25098

CVE-2019-25098 affects soerennb eXtplorer up to version 2.1.12. The vulnerability is a path traversal flaw in an unknown portion of the include/archive.php file within the Archive Handler component. Upgrading to 2.1.13 addresses the issue (patch identifier b8fcb888f4ff5e171c16797a4b075c6c6f50bf46...

9.8CVSS7.5AI score0.01015EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/01/05 12:0 a.m.6 views

eXtplorer 路径遍历漏洞

eXtplorer is a PHP-based file manager. A path traversal vulnerability exists in versions prior to eXtplorer 2.1.13, which stems from a problem in the unknown section of the include/archive.php file in the component Archive Handler that can lead to path traversal...

9.8CVSS6.3AI score0.01015EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/01/05 12:0 a.m.8 views

PT-2023-11356 · Soerennb · Extplorer

Name of the Vulnerable Software and Affected Versions: soerennb eXtplorer versions up to 2.1.12 Description: A critical issue was found in the Archive Handler component, specifically in the file include/archive.php, which can lead to path traversal. The estimated number of potentially affected...

9.8CVSS5.7AI score0.01015EPSS
Exploits0References10
Rows per page
Query Builder