CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

77 matches found

Snyk•added 2026/05/18 4:21 p.m.•7 views

External Control of File Name or Path

Overview ci4-cms-erp/ci4ms is a composer create-project ci4-cms-erp/ci4ms Affected versions of this package are vulnerable to External Control of File Name or Path through the deleteFileOrFolder and renameFile processes. An attacker can remove or rename critical application files by sending craft...

7CVSS5.8AI score

Exploits0References2

CNNVD•added 2026/04/01 12:0 a.m.•3 views

Joomla! CMS 安全漏洞

Joomla! CMS is a content management system developed under the open source Joomla! framework. The Joomla! CMS has security vulnerabilities, which stem from the lack of input validation. This vulnerability may lead to the deletion of any file in the automatic update server mechanism...

8.6CVSS5.8AI score0.00001EPSS

Exploits0References1

Positive Technologies•added 2026/03/23 12:0 a.m.•2 views

PT-2026-27263

Name of the Vulnerable Software and Affected Versions Rails versions prior to 8.1.2.1 Rails versions prior to 8.0.4.1 Rails versions prior to 7.2.3.1 Description Active Storage enables users to attach cloud and local files within Rails applications. A flaw exists in the DiskServicedelete prefixed...

9.1CVSS5.8AI score0.00029EPSS

Exploits0References21

RedhatCVE•added 2026/03/08 1:44 a.m.•3 views

CVE-2026-2020

The JS Archive List plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 6.1.7 via the 'included' shortcode attribute. This is due to the deserialization of untrusted input supplied via the 'included' parameter of the plugin's shortcode. This makes it...

7.5CVSS6AI score0.00097EPSS

Exploits0References1

CNNVD•added 2026/02/19 12:0 a.m.•5 views

Dell Unisphere for PowerMax 安全漏洞

Dell Unisphere for PowerMax is a graphical management platform developed by the American company Dell. Version 10.2 of Dell Unisphere for PowerMax contains a security vulnerability. This vulnerability stems from external control over file names or paths, which could lead to the deletion of any fi...

8.1CVSS5.8AI score0.00075EPSS

Exploits0References1

RedhatCVE•added 2025/10/10 1:32 a.m.•5 views

CVE-2025-42706

A logic error exists in the Falcon sensor for Windows that could allow an attacker, with the prior ability to execute code on a host, to delete arbitrary files. CrowdStrike released a security fix for this issue in Falcon sensor for Windows versions 7.24 and above and all Long Term Visibility LTV...

6.5CVSS7.6AI score0.00011EPSS

Exploits0References1

EUVD•added 2025/10/08 5:18 p.m.•5 views

EUVD-2025-33293

A race condition exists in the Falcon sensor for Windows that could allow an attacker, with the prior ability to execute code on a host, to delete arbitrary files. CrowdStrike released a security fix for this issue in Falcon sensor for Windows versions 7.24 and above and all Long Term Visibility...

5.6CVSS7.1AI score0.00011EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•8 views

EUVD-2015-7727

Malware in sbrugna...

1.9CVSS6.1AI score0.00399EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2005-0259

Malware in sbrugna...

5CVSS6.1AI score0.00473EPSS

Exploits0References4