Lucene search
K

1246 matches found

OSV
OSV
added 2026/04/14 1:10 p.m.15 views

JLSEC-2026-107 Deno permission escalation vulnerability via open of privileged files with missing `--deny` flag

The Deno sandbox may be unexpectedly weakened by allowing file read/write access to privileged files in various locations on Unix and Windows platforms. For example, reading /proc/self/environ may provide access equivalent to --allow-env, and writing /proc/self/mem may provide access equivalent t...

8.4CVSS5.8AI score0.00368EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/10 7:23 p.m.4 views

PraisonAIAgents: Arbitrary File Read via read_skill_file Missing Workspace Boundary and Approval Gate

Summary readskillfile in skilltools.py allows reading arbitrary files from the filesystem by accepting an unrestricted skillpath parameter. Unlike filetools.readfile which enforces workspace boundary confinement, and unlike runskillscript which requires critical-level approval, readskillfile has...

7.5CVSS5.9AI score0.00234EPSS
Exploits1References3Affected Software1
Microsoft CVE
Microsoft CVE
added 2026/04/10 8:2 a.m.6 views

apparmor: fix race between freeing data and fs accessing it

...

7.8CVSS5.8AI score0.00145EPSS
Exploits0
The Hacker News
The Hacker News
added 2026/04/07 5:56 a.m.14 views

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

Threat actors are exploiting a maximum-severity security flaw in Flowise , an open-source artificial intelligence AI platform, according to new findings from VulnCheck. The vulnerability in question is CVE-2025-59528 CVSS score: 10.0, a code injection vulnerability that could result in remote cod...

10CVSS6.4AI score0.90183EPSS
Exploits25
Cvelist
Cvelist
added 2026/04/03 7:41 a.m.23 views

CVE-2026-4350 Perfmatters <= 2.5.9.1 - Authenticated (Subscriber+) Arbitrary File Deletion via 'delete' Parameter

The Perfmatters plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to, and including, 2.5.9.1. This is due to the PMCS::actionhandler method processing the $GET'delete' parameter without any sanitization, authorization check, or nonce verification...

8.1CVSS0.00658EPSS
Exploits1References2
CNVD
CNVD
added 2026/03/31 12:0 a.m.4 views

Unspecified vulnerability in Apple macOS Tahoe (CNVD-2026-19041)

Apple macOS Tahoe is an operating system from the American company Apple. A security vulnerability exists in Apple macOS Tahoe, which can be exploited by an attacker to access protected portions of the file system...

6.5CVSS5.8AI score0.00336EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/03/30 5:16 p.m.16 views

NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node

Summary NocoBase's Workflow Script Node executes user-supplied JavaScript inside a Node.js vm sandbox with a custom require allowlist controlled by WORKFLOWSCRIPTMODULES env var. However, the console object passed into the sandbox context exposes host-realm WritableWorkerStdio stream objects via...

9.9CVSS6AI score0.36503EPSS
Exploits7References5Affected Software1
CVE
CVE
added 2026/03/26 7:40 p.m.12 views

CVE-2026-33531

CVE-2026-33531 affects InvenTree prior to 1.2.6. A path traversal vulnerability in the report template engine allows a staff-level user to read arbitrary server files via crafted template tags in report.py (encode_svg_image(), asset(), uploaded_image()). Exploitation requires staff access to uplo...

7.1CVSS5.9AI score0.00293EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/03/06 6:54 a.m.6 views

CVE-2026-29039 changedetection.io: XPath - Arbitrary File Read via unparsed-text()

changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, the changedetection.io application allows users to specify XPath expressions as content filters via the includefilters field. These XPath expressions are processed using the elementpath library which...

9.3CVSS5.8AI score0.00484EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.7 views

Navtor NavBox 安全漏洞

Navtor NavBox is a shipping information system device developed by the Norwegian company Navtor. It is used for electronic nautical chart management and synchronization of navigation data. There is a security vulnerability in Navtor NavBox. This vulnerability stems from the HTTP service not...

7.5CVSS5.8AI score0.00451EPSS
Exploits0References2
NVD
NVD
added 2026/02/25 5:25 p.m.5 views

CVE-2026-20133

A vulnerability in Cisco Catalyst SD-WAN Software could allow an unauthenticated, remote attacker to view sensitive information on an affected system. This vulnerability is due to insufficient file system restrictions. An authenticated attacker with netadmin privileges could exploit this...

7.5CVSS0.10245EPSS
Exploits0References2
CVE
CVE
added 2026/02/25 4:24 p.m.20 views

CVE-2026-20037

CVE-2026-20037 affects Cisco UCS Manager Software with NX-OS CLI privilege levels. An authenticated, read-only user can connect to the NX-OS CLI and leverage unnecessary privileges to create or overwrite files or perform limited privileged actions on the device. The issue stems from excessive pri...

4.4CVSS5.5AI score0.00095EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.11 views

Cisco Catalyst SD-WAN Manager(Cisco SD-WAN vManage) 信息泄露漏洞

Cisco Catalyst SD-WAN Manager Cisco SD-WAN vManage is a highly customizable dashboard provided by the American company Cisco. It simplifies and automates the deployment, configuration, management, and operation of Cisco SD-WAN. Cisco Catalyst SD-WAN Manager has a vulnerability related to...

7.5CVSS7.4AI score0.10245EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/01 12:56 p.m.5 views

CVE-2022-50950

Webile 1.0.1 contains a directory traversal vulnerability that allows remote attackers to manipulate file system paths without authentication. Attackers can exploit path manipulation to access sensitive system directories and potentially compromise the mobile device's local file system...

7.1CVSS5.9AI score0.00875EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/01/16 12:0 a.m.6 views

Skipper security vulnerabilities

Skipper is an HTTP router and reverse proxy used for service combinations. Versions of Skipper prior to 0.23.0 have security vulnerabilities. These vulnerabilities stem from the default configuration, which allows untrusted users to create Lua filters, potentially leading to file system access...

8.8CVSS5.8AI score0.00473EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 12:15 p.m.17 views

CVE-2018-1000150

An exposure of sensitive information vulnerability exists in Jenkins Reverse Proxy Auth Plugin 1.5 and older in ReverseProxySecurityRealmauthContext that allows attackers with local file system access to obtain a list of authorities for logged in users...

3.3CVSS6AI score0.00349EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:27 a.m.9 views

CVE-2023-45594

A CWE-552 “Files or Directories Accessible to External Parties” vulnerability in the embedded Chromium browser allows a physical attacker to arbitrarily download/upload files to/from the file system, with unspecified impacts to the confidentiality, integrity, and availability of the device. This...

6.8CVSS6.6AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:20 a.m.13 views

CVE-2021-33662

Under certain conditions, the installation of SAP Business One, version - 10.0, discloses sensitive information on the file system allowing an attacker to access information which would otherwise be restricted...

6.7CVSS6.5AI score0.00259EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:34 a.m.13 views

CVE-2019-7847

Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Improper Restriction of XML External Entity Reference 'XXE' vulnerability. Successful exploitation could lead to Arbitrary read access to the file system in the context of the current user...

7.5CVSS6.6AI score0.03251EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:31 a.m.22 views

CVE-2019-16560

A cross-site request forgery vulnerability in Jenkins WebSphere Deployer Plugin 1.6.1 and earlier allows attackers to perform connection tests and determine whether files with an attacker-specified path exist on the Jenkins master file system...

8.8CVSS6.6AI score0.00691EPSS
Exploits0References1
Rows per page
Query Builder