Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:22 p.m.10 views

CVE-2026-7252

The WP-Optimize – Cache, Compress images, Minify & Clean database to boost page speed & performance plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the unscheduledoriginalfiledeletion function in all versions up to, and including, 4.5.2 Th...

8.1CVSS6.4AI score0.0095EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 6:18 p.m.3 views

CVE-2026-25605

A vulnerability has been identified in SICAM SIAPP SDK All versions V2.1.7. The affected application performs file deletion without properly validating the file path or target. An attacker could delete files or sockets that the affected process has permission to remove, potentially resulting in...

7.1CVSS0.00123EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.6 views

PT-2026-1414

Name of the Vulnerable Software and Affected Versions BuddyPress Xprofile Custom Field Types plugin versions through 1.2.8 Description The BuddyPress Xprofile Custom Field Types plugin for WordPress has a flaw that allows authenticated attackers with Subscriber-level access or higher to delete...

7.2CVSS7.2AI score0.00615EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-20402

Malware in sbrugna...

9.1CVSS9.1AI score0.00999EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:14 a.m.6 views

CVE-2019-15493

openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21...

7.5CVSS7AI score0.0118EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/09 12:0 a.m.3 views

Avira Prime 安全漏洞

Avira Prime is a security software from the German company Avira. A security vulnerability exists in Avira Prime version 1.1.96.2, which stems from an arbitrary file deletion issue in Avira.Spotlight.Service.exe, which could lead to elevated privileges...

7.8CVSS6.7AI score0.00174EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/10/09 12:0 a.m.5 views

The vulnerability in the databasefiledelete.php script of the ASPECT Enterprise, NEXUS Series, MATRIX Series embedded network controller software web server allows a perpetrator to gain unauthorized access to the device and delete arbitrary files.

The vulnerability of the databasefiledelete.php web script of the ASPECT Enterprise, NEXUS Series, MATRIX Series embedded network controller software lies in the use of files and directories accessible from external parties. Exploiting this vulnerability could allow an attacker to gain unauthoriz...

9.6CVSS5.5AI score0.17159EPSS
Exploits3References4Affected Software19
CNNVD
CNNVD
added 2020/11/16 12:0 a.m.7 views

Wwbn Avideo Security Breach

Wwbn Avideo is a video platform builder written in PHP by the Wwbn team. A security vulnerability exists in versions of Avideo prior to 8.9, which stems from the import.json.php file having a file deletion vulnerability. This allows for the deletion of configuration.php, which causes certain...

8.8CVSS7.3AI score0.02329EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2018/11/07 9:1 a.m.1 views

Popular WooCommerce WordPress Plugin Patches Critical Vulnerability

If you own an eCommerce website built on WordPress and powered by WooCommerce plugin, then beware of a new vulnerability that could compromise your online store. Simon Scannell, a researcher at RIPS Technologies GmbH, discovered an arbitrary file deletion vulnerability in the popular WooCommerce...

7.2AI score
Exploits0
Rows per page
Query Builder