Lucene search
K

9 matches found

AlpineLinux
AlpineLinux
added 2026/06/25 3:26 p.m.5 views

CVE-2026-57453

Vim is an open source, command line text editor. From 9.1.1784 until 9.2.0678, when the bundled zip plugin autoload/zip.vim falls back to PowerShell to browse, read, extract, update or delete entries in a zip archive, it builds the PowerShell command by inserting archive entry names that are quot...

7.3CVSS6.2AI score0.00137EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/16 9:14 p.m.10 views

Junrar: Path Traversal (Zip-Slip) via Sibling Directory Name Prefix

Summary A path traversal vulnerability in LocalFolderExtractor allows an attacker to write arbitrary files with attacker-controlled content into sibling directories when a crafted RAR archive is extracted. Example Given an extraction directory set to /tmp/extract, a crafted archive with an entry...

9.3CVSS5.9AI score0.00336EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/12/18 10:15 p.m.4 views

CVE-2025-34451

rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 contain a stack-based buffer overflow vulnerability in the function proxyfromstring located in src/libproxychains.c. When parsing crafted proxy configuration entries containing overly long username or password...

7.8CVSS7.4AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.3 views

PT-2025-52353

Name of the Vulnerable Software and Affected Versions rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 Description The software contains a stack-based buffer overflow in the proxy from string function, located in src/libproxychains.c. This occurs when parsing...

7.8CVSS6.8AI score0.00218EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-0455

Malware in sbrugna...

5CVSS6.3AI score0.01428EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/08/30 12:0 a.m.3 views

PT-2023-26797 · Zip Swift · Zip Swift

Name of the Vulnerable Software and Affected Versions: Zip Swift version 2.1.2 Description: The issue allows attackers to execute a path traversal attack via a crafted zip entry. This enables attackers to potentially access or modify files outside the intended directory, posing a security risk...

7.8CVSS7.5AI score0.00439EPSS
Exploits1References9
OSV
OSV
added 2016/12/15 6:59 a.m.3 views

CVE-2016-7889

Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure...

7.5CVSS5.8AI score0.05512EPSS
Exploits0References3
NVD
NVD
added 2006/06/27 6:5 p.m.19 views

CVE-2006-3251

Heap-based buffer overflow in the arraypush function in hashcash.c for Hashcash before 1.21 might allow attackers to execute arbitrary code via crafted entries...

7.5CVSS7.7AI score0.03586EPSS
Exploits0References9
OSV
OSV
added 2006/06/27 6:5 p.m.4 views

DEBIAN-CVE-2006-3251

Heap-based buffer overflow in the arraypush function in hashcash.c for Hashcash before 1.21 might allow attackers to execute arbitrary code via crafted entries...

7.5CVSS8.3AI score0.03586EPSS
Exploits0References1
Rows per page
Query Builder