CVE-2024-7037 Arbitrary File Write/Delete Leading to RCE in open-webui/open-webui

In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbitrary file write and delete due to unsanitized file.filename concatenation with CACHEDIR. This vulnerability allows attackers to overwrite and delete system files, potentially leading to remote cod...

CVE-2024-7037 Arbitrary File Write/Delete Leading to RCE in open-webui/open-webui

In version v0.3.8 of open-webui/open-webui, the endpoint /api/pipelines/upload is vulnerable to arbitrary file write and delete due to unsanitized file.filename concatenation with CACHEDIR. This vulnerability allows attackers to overwrite and delete system files, potentially leading to remote cod...

CVE-2024-7037

Open WebUI project (open-webui) v0.3.8 has a path traversal/Arbitrary File Write and Delete vulnerability in the /api/pipelines/upload endpoint caused by unsanitized file.filename concatenation with CACHE_DIR. This allows an attacker to overwrite or delete system files and could lead to remote co...

Open WebUI 路径遍历漏洞

Open WebUI is an extensible, feature-rich, user-friendly self-hosted WebUI from Open WebUI open source. A path traversal vulnerability exists in Open WebUI version v0.3.8 that stems from vulnerability to arbitrary file write and delete attacks, allowing an attacker to overwrite and delete system...

PT-2024-38039 · Unknown · Open-Webui

Name of the Vulnerable Software and Affected Versions: open-webui/open-webui version 0.3.8 Description: The /api/pipelines/upload endpoint is susceptible to arbitrary file write and deletion due to improper sanitization of the file.filename variable when concatenated with CACHE DIR. This allows...

PT-2024-7511 · Nginx · Nginx-Ui

Name of the Vulnerable Software and Affected Versions: Nginx UI versions 2.0.0-beta.35 and earlier Description: The issue is related to the Nginx UI's handling of JSON fields without proper verification, allowing an attacker to construct a value in the form of ../../ and write arbitrary files to...

CVE-2024-47949

In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary location...

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the LocalMode's openlocalfile method, which allows an authenticated user with adequate permissions to download any .txt via the ScreensControllershow on the web server. Details A Directory Traversal attack also...

CVE-2024-20438

A vulnerability in the REST API endpoints of Cisco NDFC could allow an authenticated, low-privileged, remote attacker to read or write files on an affected device. This vulnerability exists because of missing authorization controls on some REST API endpoints. An attacker could exploit this...

Backdoor.Win32.Amatu.a MVID-2024-0698 Arbitrary File Write

Discovery / credits: Malvuln John Page aka hyp3rlinx c 2024 Original source: https://malvuln.com/advisory/1e2d0b90ffc23e00b743c41064bdcc6b.txt Contact: [email protected] Media: x.com/malvuln Threat: Backdoor.Win32.Amatu.a Vulnerability: Remote Arbitrary File Write RCE Family: Amatu Type: PE32...

CVE-2024-44825

Directory Traversal vulnerability in Centro de Tecnologia da Informaco Renato Archer InVesalius3 v3.1.99995 allows attackers to write arbitrary files unto the system via a crafted .inv3 file...

DEBIAN-CVE-2024-44825

Directory Traversal vulnerability in Centro de Tecnologia da Informaco Renato Archer InVesalius3 v3.1.99995 allows attackers to write arbitrary files unto the system via a crafted .inv3 file...

PT-2024-31270 · Unknown · Invesalius3

Name of the Vulnerable Software and Affected Versions: InVesalius3 version 3.1.99995 Description: The issue allows attackers to write arbitrary files unto the system via a crafted .inv3 file, exploiting a Directory Traversal vulnerability. Recommendations: For InVesalius3 version 3.1.99995,...

CVE-2024-44825

Directory Traversal vulnerability in Centro de Tecnologia da Informaco Renato Archer InVesalius3 v3.1.99995 allows attackers to write arbitrary files unto the system via a crafted .inv3 file...

PouchContainer 安全漏洞

PouchContainer is an efficient enterprise container engine open-sourced by Aliyun Container Service. A security vulnerability exists in PouchContainer v1.3.1. An attacker exploited the vulnerability to elevate privileges and write arbitrary files...

PT-2024-29313 · Alibaba · Aliyuncontainerservice Pouch

Name of the Vulnerable Software and Affected Versions: AliyunContainerService pouch version 1.3.1 Description: A symlink following vulnerability in the pouch cp function of AliyunContainerService pouch allows attackers to escalate privileges and write arbitrary files. Recommendations: For...

Invesalius 3.1 Arbitrary File Write / Directory Traversal

Exploit Title: Invesalius 3.1 - Arbitrary File Write using Directory Traversal Discovered By: Riccardo Degli Esposti partywave Exploit Author: Riccardo Degli Esposti partywave Vendor Homepage: https://invesalius.github.io/ Software Link:...

MOXA MXview One Series 安全漏洞

MOXA MXview One Series is a series of network management software from China-based MOXA. A security vulnerability exists in MOXA MXview One Series that stems from the inclusion of a race condition issue. An attacker can exploit the vulnerability to write arbitrary files to the system...

CVE-2024-46640

SeaCMS 13.2 has a remote code execution vulnerability located in the file sql.class.chp. Although the system has a check function, the check function is not executed during execution, allowing remote code execution by writing to the file through the MySQL slow query method...

PT-2024-37863 · Moxa · Mxview One Series +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: This issue occurs when an attacker exploits a race condition between the time a file is checked and the time it is used, known as a...