Lucene search
K

199 matches found

OSV
OSV
added 2026/03/31 8:57 p.m.5 views

CVE-2026-34740 AVideo: Stored SSRF via Video EPG Link Missing isSSRFSafeURL() Validation

WWBN AVideo is an open source video platform. In versions 26.0 and prior, the EPG Electronic Program Guide link feature in AVideo allows authenticated users with upload permissions to store arbitrary URLs that the server fetches on every EPG page visit. The URL is validated only with PHP's...

6.5CVSS6AI score0.00323EPSS
Exploits1References3
NVD
NVD
added 2026/03/26 10:16 p.m.5 views

CVE-2026-33687

Sharp is a content management framework built for Laravel as a package. Versions prior to 9.20.0 contain a vulnerability in the file upload endpoint that allows authenticated users to bypass all file type restrictions. The upload endpoint within the ApiFormUploadController accepts a...

8.8CVSS0.00507EPSS
Exploits0References4
CVE
CVE
added 2026/03/26 4:21 p.m.13 views

CVE-2026-3114

Mattermost CVE-2026-3114 affects versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2.3, and 10.11.x

6.5CVSS5.8AI score0.00343EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/24 7:14 p.m.6 views

CVE-2026-33329

FileRise is a self-hosted web file manager / WebDAV server. From version 1.0.1 to before version 3.10.0, the resumableIdentifier parameter in the Resumable.js chunked upload handler UploadModel::handleUpload is concatenated directly into filesystem paths without any sanitization. An authenticated...

8.1CVSS5.9AI score0.00444EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/24 11:27 a.m.3 views

CVE-2019-25630

PhreeBooks ERP 5.2.3 contains an arbitrary file upload vulnerability in the Image Manager component that allows authenticated attackers to upload malicious files by submitting requests to the image upload endpoint. Attackers can upload PHP files through the imgFile parameter to the...

8.8CVSS6.3AI score0.00896EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/03/23 3:52 p.m.24 views

CVE-2026-33493 AVideo has a Path Traversal in import.json.php that Allows Private Video Theft and Arbitrary File Read/Deletion via fileURI Parameter

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the objects/import.json.php endpoint accepts a user-controlled fileURI POST parameter with only a regex check that the value ends in .mp4. Unlike objects/listFiles.json.php, which was hardened with a realpath +...

7.1CVSS0.00335EPSS
Exploits1References2
OSV
OSV
added 2026/03/19 10:55 p.m.2 views

CVE-2026-29104 SuiteCRM Vulnerable to Authenticated Arbitrary File Upload via Configurator addfontresult View in SuiteCRM

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, SuiteCRM contains an authenticated arbitrary file upload vulnerability in the Configurator module. An authenticated administrator can bypass intended file ty...

2.7CVSS5.8AI score0.0023EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/19 10:55 p.m.7 views

CVE-2026-29104

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, SuiteCRM contains an authenticated arbitrary file upload vulnerability in the Configurator module. An authenticated administrator can bypass intended file ty...

2.7CVSS5.7AI score0.0023EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.14 views

PT-2026-26442

Name of the Vulnerable Software and Affected Versions SuiteCRM versions prior to 7.15.1 SuiteCRM versions prior to 8.9.3 Description SuiteCRM is an open-source Customer Relationship Management CRM software application. Prior to versions 7.15.1 and 8.9.3, it contains an authenticated arbitrary fil...

2.7CVSS5.9AI score0.0023EPSS
Exploits0References9
EUVD
EUVD
added 2026/03/16 6:32 p.m.4 views

EUVD-2025-208753

An authenticated arbitrary file upload vulnerability in the Courses/Work Assignments module of gunet Open eClass v3.11, and fixed in v3.13, allows attackers to execute arbitrary code via uploading a crafted SVG file...

5.4CVSS6.2AI score0.00242EPSS
Exploits1References5
OSV
OSV
added 2026/03/16 11:33 a.m.4 views

CVE-2026-26246 Memory Exhaustion via Malformed PSD File Upload

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to bound memory allocation when processing PSD image files which allows an authenticated attacker to cause server memory exhaustion and denial of service via uploading a specially crafted PSD file. Mattermost Advisory I...

4.3CVSS6AI score0.00221EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/10 1:2 a.m.9 views

EUVD-2026-10341

Actual Sync Server has an Authenticated Path Traversal...

5.3CVSS5.8AI score0.00377EPSS
Exploits1References6
GitLab Advisory Database
GitLab Advisory Database
added 2026/03/10 12:0 a.m.13 views

Actual Sync Server has an Authenticated Path Traversal

Actual Sync Server allows authenticated users to upload files through POST /sync/upload-user-file. In versions prior to 26.3.0, improper validation of the user-controlled x-actual-file-id header means that traversal segments ../ can escape the intended directory and write files outside userFiles...

6.5CVSS5.8AI score0.00377EPSS
Exploits1References7Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.4 views

PT-2026-23513

Name of the Vulnerable Software and Affected Versions Aranda Service Desk Web Edition ASDK API version 8.6 Description An issue allows authenticated attackers to achieve remote code execution due to improper validation of uploaded files. An authenticated user can upload a crafted web.config file ...

8.8CVSS6.5AI score0.00612EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2026/03/04 12:0 a.m.177 views

📄 WonderCMS 3.4.2 Shell Upload

Proof of concept exploit for an authentication shell upload vulnerability in WonderCMS version 3.4.2. ============================================================================================================================================= | Title : WonderCMS 3.4.2 Authenticated file upload...

6.1CVSS5.9AI score0.54305EPSS
Exploits16
OSV
OSV
added 2026/03/03 6:16 p.m.5 views

CVE-2025-63910

An authenticated arbitrary file upload vulnerability in Cohesity TranZman Migration Appliance Release 4.0 Build 14614 allows attackers with Administrator privileges to execute arbitrary code via uploading a crafted patch file...

7.2CVSS6.2AI score0.00356EPSS
Exploits2References3
NVD
NVD
added 2026/02/25 4:16 a.m.9 views

CVE-2026-27636

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's file upload restriction list in app/Misc/Helper.php does not include .htaccess or .user.ini files. On Apache servers with AllowOverride All a common configuration, an...

8.8CVSS0.02121EPSS
Exploits3References3
Cvelist
Cvelist
added 2026/02/25 3:41 a.m.326 views

CVE-2026-27636 FreeScout: Missing .htaccess in Restricted File Extensions Allows Remote Code Execution on Apache

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's file upload restriction list in app/Misc/Helper.php does not include .htaccess or .user.ini files. On Apache servers with AllowOverride All a common configuration, an...

8.8CVSS0.02121EPSS
Exploits3References3
Cvelist
Cvelist
added 2026/02/24 2:22 p.m.26 views

CVE-2026-27567 Payload has Server-Side Request Forgery (SSRF) in External File URL Uploads

Payload is a free and open source headless content management system. Prior to 3.75.0, a Server-Side Request Forgery SSRF vulnerability exists in Payload's external file upload functionality. When processing external URLs for file uploads, insufficient validation of HTTP redirects could allow an...

6.5CVSS0.00288EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/20 11:14 p.m.3 views

CVE-2026-27147 GetSimple CMS: Stored Cross-Site Scripting (XSS) via SVG File Upload (Authenticated)

GetSimple CMS is a content management system. All versions of GetSimple CMS are vulnerable to XSS through SVG file uploads. Authenticated users can upload SVG files via the administrative upload functionality, but they are not properly sanitized or restricted, allowing an attacker to embed...

6.9CVSS5.4AI score0.00197EPSS
Exploits1References1
Rows per page
Query Builder