Lucene search
K

3503 matches found

EUVD
EUVD
added 2026/03/11 6:30 p.m.3 views

EUVD-2025-208591

An issue was discovered in Lantronix EDS3000PS 3.1.0.0R2. The host parameter of the TFTP client in the Filesystem Browser page is not properly sanitized. This can be exploited to escape from the original command and execute an arbitrary one with root privileges...

9.8CVSS5.9AI score0.00431EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/11 1:19 p.m.7 views

CVE-2025-41710

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/03/11 8:1 a.m.7 views

libssh SFTP Extension Name sftp.c sftp_extensions_get_data out-of-bounds

...

7.5CVSS6AI score0.00631EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.4 views

PT-2026-24573

Name of the Vulnerable Software and Affected Versions MiCode FileExplorer affected versions not specified Description The software contains an authentication bypass in the embedded SwiFTP FTP server component. This allows network attackers to log in without valid credentials by sending arbitrary...

9.8CVSS5.9AI score0.00481EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.10 views

Copyparty 安全漏洞

Copyparty is a portable file server developed by Ed’s individual developer. Versions of Copyparty prior to 1.20.12 contained security vulnerabilities. These vulnerabilities stemmed from the lack of permission checks in the sharing function, which could allow users to access other files within...

6.5CVSS5.8AI score0.00274EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.3 views

PT-2026-24823

Copyparty is a portable file server. Prior to 1.20.12, there was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies when the shares feature is used for the specific purpose of creating a share of just a single file inside a folder or either the...

7.5CVSS5.8AI score0.00344EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/10 6:31 p.m.2 views

EUVD-2025-208468

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References5
EUVD
EUVD
added 2026/03/10 6:31 p.m.4 views

EUVD-2025-208467

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References5
CVE
CVE
added 2026/03/10 8:26 a.m.7 views

CVE-2025-41710

CVE-2025-41710 describes an unauthenticated remote access issue where an attacker may use hard-coded credentials to reach a previously activated FTP server with limited read/write privileges. The CVSSv3.1 base score is 6.5 (Medium) with network attack vector, low attack complexity, and no user in...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/10 8:26 a.m.2 views

CVE-2025-41710 Use of Hard-coded Credentials in power analyzer

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.6 views

PT-2026-24184

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.6 views

Janitza UMG 96RM-E 24V和Janitza UMG 96RM-E 230V 信任管理问题漏洞

Both Janitza UMG 96RM-E 24V and Janitza UMG 96RM-E 230V are multi-functional power quality analyzers from the German company Janitza. There are vulnerabilities related to trust management in both models 5222063 for Janitza UMG 96RM-E 24V and 5222062 for Janitza UMG 96RM-E 230V. These...

6.5CVSS5.8AI score0.00387EPSS
Exploits0References5
Redos
Redos
added 2026/03/10 12:0 a.m.2 views

ROS-20260310-73-0019

Vulnerability in vsftpd related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

6.5CVSS5.9AI score0.00737EPSS
Exploits0
OSV
OSV
added 2026/03/06 12:41 p.m.4 views

OESA-2026-1492 libssh security update

The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...

6.3CVSS5.8AI score0.00408EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/06 7:52 a.m.4 views

CVE-2026-2743

Arbitrary File Write via Path Traversal upload to Remote Code Execution in SeppMail User Web Interface. The affected feature is the large file transfer LFT. This issue affects SeppMail: 15.0.2.1 and before...

10CVSS5.9AI score0.00842EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/05 9:30 a.m.7 views

EUVD-2026-9794

Arbitrary File Write via Path Traversal upload to Remote Code Execution in SeppMail User Web Interface. The affected feature is the large file transfer LFT. This issue affects SeppMail: 15.0.2.1 and before...

10CVSS6AI score0.00842EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/05 7:51 a.m.6 views

CVE-2026-28778

International Datacasting Corporation IDC SFX Series SuperFlex Satellite Receiver contains undocumented, hardcoded/insecure credentials for the xd user account. A remote unauthenticated attacker can log in via FTP using these credentials. Because the xd user has write permissions to their home...

9.8CVSS6.5AI score0.00849EPSS
Exploits1References1
OSV
OSV
added 2026/03/05 7:16 a.m.2 views

CVE-2026-2743

Arbitrary File Write via Path Traversal upload to Remote Code Execution in SeppMail User Web Interface. The affected feature is the large file transfer LFT. This issue affects SeppMail: 15.0.2.1 and before...

9.8CVSS5.9AI score0.00842EPSS
Exploits0References2
NVD
NVD
added 2026/03/05 7:16 a.m.14 views

CVE-2026-2743

Arbitrary File Write via Path Traversal upload to Remote Code Execution in SeppMail User Web Interface. The affected feature is the large file transfer LFT. This issue affects SeppMail: 15.0.2.1 and before...

10CVSS0.00842EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/05 6:45 a.m.3 views

CVE-2026-2743 SEPPmail User Web Interface Arbitrary File Write to RCE

Arbitrary File Write via Path Traversal upload to Remote Code Execution in SeppMail User Web Interface. The affected feature is the large file transfer LFT. This issue affects SeppMail: 15.0.2.1 and before...

10CVSS5.8AI score0.00842EPSS
Exploits0References2
Rows per page
Query Builder