CVE-2019-25295 WP Cost Estimation < 9.660 - Upload Directory Traversal

The WP Cost Estimation plugin for WordPress is vulnerable to Upload Directory Traversal in versions before 9.660 via the uploadFormFiles function. This allows attackers to overwrite any file with a whitelisted type on an affected site...

CVE-2019-25295

CVE-2019-25295 affects the WP Cost Estimation plugin for WordPress. Versions prior to 9.660 are vulnerable to a directory traversal in the uploadFormFiles function, allowing an attacker to overwrite any file with a whitelisted type on the site. This results in potential partial impact to integrit...

CVE-2019-25295 WP Cost Estimation < 9.660 - Upload Directory Traversal

The WP Cost Estimation plugin for WordPress is vulnerable to Upload Directory Traversal in versions before 9.660 via the uploadFormFiles function. This allows attackers to overwrite any file with a whitelisted type on an affected site...

WordPress plugin WP Cost Estimation 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A path traversal...

CVE-1999-0133

fmfls license server for Adobe Framemaker allows local users to overwrite arbitrary files and gain root access...

CVE-1999-0081

wu-ftp allows files to be overwritten via the rnfr command...

CVE-1999-0730

The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack...

CVE-1999-0424

talkback in Netscape 4.5 allows a local user to overwrite arbitrary files of another user whose Netscape crashes...

CVE-2019-16155

A privilege escalation vulnerability in FortiClient for Linux 6.2.1 and below may allow a user with low privilege to overwrite system files as root with arbitrary content through system backup file via specially crafted "BackupConfig" type IPC client requests to the fctsched process. Further more...

CVE-2019-12571

A vulnerability in the London Trust Media Private Internet Access PIA VPN Client v0.9.8 beta build 02099 for macOS could allow an authenticated, local attacker to overwrite arbitrary files. When the client initiates a connection, the XML /tmp/pia-watcher.plist file is created. If the file exists,...

SUSE CVE-2025-67488

SiYuan is self-hosted, open source personal knowledge management software. Versions 0.0.0-20251202123337-6ef83b42c7ce and below contain function importZipMd which is vulnerable to ZipSlips, allowing an authenticated user to overwrite files on the system. An authenticated user with access to the...

PT-2026-20979

Name of the Vulnerable Software and Affected Versions libssh versions prior to 0.11.4-1.1 Description A denial of service condition can occur due to a malformed SFTP message. Recommendations Update to version 0.11.4-1.1 or later...

PT-2026-20975

Name of the Vulnerable Software and Affected Versions libssh affected versions not specified Description The software contains an issue related to improper sanitation of paths received from SCP servers. This could potentially lead to security consequences. Recommendations At the moment, there is ...

Slackware: Security Advisory (SSA:2025-364-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[slackware-security] wget2

New wget2 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/wget2-2.2.1-i586-1slack15.0.txz: Upgraded. This update fixes bugs and the following security issues: Fix file overwrite issue with...

EUVD-2025-205357

C-Kermit aka ckermit through 10.0 Beta.12 aka 416-beta12 before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system...

Linux Distros Unpatched Vulnerability : CVE-2025-68920

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - C-Kermit aka ckermit through 10.0 Beta.12 aka 416-beta12 before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve...

CVE-2025-68920

C-Kermit aka ckermit through 10.0 Beta.12 aka 416-beta12 before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system...

CVE-2025-68920

C-Kermit aka ckermit through 10.0 Beta.12 aka 416-beta12 before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system...

CVE-2025-68920

C-Kermit (ckermit) up to 10.0 Beta.12 (416-beta12) before 244644d is affected by CVE-2025-68920. A remote Kermit system can overwrite files on the local system or retrieve arbitrary files. Root cause details are not specified in the provided documents. Connected sources include Red Hat, EUVD, NVD...