Lucene search
K

157 matches found

Github Security Blog
Github Security Blog
added 2025/03/17 9:26 p.m.50 views

zip Incorrectly Canonicalizes Paths during Archive Extraction Leading to Arbitrary File Write

Summary In the archive extraction routine of affected versions of the zip crate, symbolic links earlier in the archive are allowed to be used for later files in the archive without validation of the final canonicalized path, allowing maliciously crafted archives to overwrite arbitrary files in th...

7.3CVSS7.2AI score0.005EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2025/03/15 12:0 a.m.5 views

WordPress plugin Thumbnail carousel slider SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

4.9CVSS9.1AI score0.00414EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/02/03 7:28 a.m.11 views

CVE-2025-0377

An archive extraction vulnerability was found in HashiCorp's go-slug library. When go-slug performs an extraction, the filename/extraction path is taken from the tar entry via the header.Name. It was discovered that the unpacking step improperly validated paths, potentially leading to path...

7.5CVSS6.8AI score0.00667EPSS
Exploits0References4
OSV
OSV
added 2025/02/03 5:15 a.m.1 views

UBUNTU-CVE-2024-57966

libarchiveplugin.cpp in KDE ark before 24.12.0 can extract to an absolute path from an archive...

5CVSS5.8AI score0.00271EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/02/03 12:0 a.m.6 views

CVE-2024-57966

libarchiveplugin.cpp in KDE ark before 24.12.0 can extract to an absolute path from an archive...

5CVSS5.4AI score0.00271EPSS
Exploits0
NVD
NVD
added 2025/01/30 9:15 a.m.6 views

CVE-2024-13694

The WooCommerce Wishlist High customization, fast setup,Free Elementor Wishlist, most features plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.8.7 via the downloadpdffile function due to missing validation on a user controlled key. Th...

7.5CVSS0.00571EPSS
Exploits0References5
CNVD
CNVD
added 2025/01/13 12:0 a.m.7 views

Huawei HarmonyOS Account Module Elevation of Privilege Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a privilege extraction vulnerability in the Account module. An attacker could exploit t...

7.5CVSS6.8AI score0.00165EPSS
Exploits0References1
CVE
CVE
added 2024/12/11 12:0 a.m.60 views

CVE-2024-55587

The CVE-2024-55587 issue affects python-libarchive up to version 4.2.1, as reported by Red Hat/NVD and corroborating sources. The vulnerability exists in ZipFile.extractall and ZipFile.extract (in zip.py), enabling directory traversal to create files outside the intended directory. The Red Hat en...

8.8CVSS6.7AI score0.02041EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/12/10 1:54 p.m.12 views

CVE-2024-54005

A vulnerability has been identified in COMOS V10.3 All versions V10.3.3.5.8, COMOS V10.4.0 All versions, COMOS V10.4.1 All versions, COMOS V10.4.2 All versions, COMOS V10.4.3 All versions V10.4.3.0.47, COMOS V10.4.4 All versions V10.4.4.2, COMOS V10.4.4.1 All versions V10.4.4.1.21. The PDMS/E3D...

5.9CVSS6.7AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2024/07/05 11:8 a.m.6 views

OESA-2024-1812 rust security update

Rust is a systems programming language focused on three goals:safety, speed,and concurrency.It maintains these goals without having a garbage collector, making it a useful language for a number of use cases other languages are not good at: embedding in other languages, programs with specific spac...

8.1CVSS8.9AI score0.01004EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/05/22 9:35 a.m.3 views

squashfs-tools: possible Directory Traversal via symbolic link

A directory traversal flaw was found in squashfs-tools. During extraction, a file can escape the destination directory by using a symbolic link, and a regular file with an identical name. This flaw allows a specially crafted squashfs archive to install or overwrite files outside of the destinatio...

8.1CVSS6.5AI score0.02296EPSS
Exploits1References4
OSV
OSV
added 2024/03/21 11:15 p.m.3 views

UBUNTU-CVE-2024-28863

node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few...

6.5CVSS6.7AI score0.00929EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/03/21 12:0 a.m.5 views

Sentrifugo SQL注入漏洞

Sentrifugo is a human resource management system. The system includes features such as human resource management, performance appraisal, recruitment management and asset management. A SQL injection vulnerability exists in Sentrifugo version 3.2, which originates from a SQL injection vulnerability...

9.8CVSS7.8AI score0.00874EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2023/12/24 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-24284

The Kaswara Modern VC Addons WordPress plugin through 3.0.1 allows unauthenticated arbitrary file upload via the 'uploadFontIcon' AJAX action. The supplied zipfile being unzipped in the wp-content/uploads/kaswara/fontsicon directory with no checks for malicious files such as PHP...

9.8CVSS7.5AI score0.4214EPSS
Exploits3References1
RedHat Linux
RedHat Linux
added 2023/11/14 4:8 p.m.6 views

python: tarfile module directory traversal

A flaw was found in the Python tarfile module. Extracting a crafted TAR archive with the tarfile.extract or tarfile.extractall functions could lead to a directory traversal vulnerability, resulting in overwrite of arbitrary files...

9.8CVSS6.7AI score0.27095EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2023/11/14 4:4 p.m.8 views

python: tarfile module directory traversal

A flaw was found in the Python tarfile module. Extracting a crafted TAR archive with the tarfile.extract or tarfile.extractall functions could lead to a directory traversal vulnerability, resulting in overwrite of arbitrary files...

9.8CVSS6.7AI score0.27095EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2023/11/08 8:20 a.m.8 views

python: tarfile module directory traversal

A flaw was found in the Python tarfile module. Extracting a crafted TAR archive with the tarfile.extract or tarfile.extractall functions could lead to a directory traversal vulnerability, resulting in overwrite of arbitrary files...

9.8CVSS6.7AI score0.27095EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2023/11/07 8:48 a.m.9 views

python: tarfile module directory traversal

A flaw was found in the Python tarfile module. Extracting a crafted TAR archive with the tarfile.extract or tarfile.extractall functions could lead to a directory traversal vulnerability, resulting in overwrite of arbitrary files...

9.8CVSS6.7AI score0.27095EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2023/11/07 8:21 a.m.6 views

python: tarfile module directory traversal

A flaw was found in the Python tarfile module. Extracting a crafted TAR archive with the tarfile.extract or tarfile.extractall functions could lead to a directory traversal vulnerability, resulting in overwrite of arbitrary files...

9.8CVSS6.7AI score0.27095EPSS
Exploits3References4
Github Security Blog
Github Security Blog
added 2023/08/31 12:30 a.m.30 views

Path traversal in Archive

An issue in Archive v3.3.7 allows attackers to execute a path traversal via extracting a crafted zip file...

7.8CVSS7.1AI score0.00341EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder