Lucene search
+L

10097 matches found

CVE
CVE
added 2026/06/26 2:53 p.m.15 views

CVE-2026-57321

The CVE-2026-57321 entry concerns the WordPress H5P plugin versions up to 1.17.7, describing an Arbitrary File Deletion vulnerability. The connected documents confirm the affected product (H5P WordPress plugin) and the issue type (arbitrary file deletion) with a CVSS v3.1 base score of 7.1 (High)...

7.1CVSS5.8AI score0.00294EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/26 2:53 p.m.5 views

EUVD-2026-39733

Contributor Arbitrary File Deletion in H5P = 1.17.7 versions...

7.1CVSS5.8AI score0.00294EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/26 2:53 p.m.34 views

CVE-2026-57321 WordPress H5P plugin <= 1.17.7 - Arbitrary File Deletion vulnerability

Contributor Arbitrary File Deletion in H5P = 1.17.7 versions...

7.1CVSS0.00294EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/26 2:52 p.m.32 views

CVE-2026-56066 WordPress ShortPixel Adaptive Images plugin <= 3.11.4 - Arbitrary File Deletion vulnerability

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images = 3.11.4 versions...

5.8CVSS0.00346EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/26 2:52 p.m.5 views

EUVD-2026-39719

Unauthenticated Arbitrary File Deletion in ShortPixel Adaptive Images = 3.11.4 versions...

5.8CVSS5.8AI score0.00346EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/06/26 9:39 a.m.5 views

WordPress H5P plugin <= 1.17.7 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by daroo in WordPress Plugin H5P versions = 1.17.7...

7.1CVSS5.8AI score0.00294EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.9 views

PT-2026-52787

Name of the Vulnerable Software and Affected Versions H5P versions prior to 1.17.8 Description A flaw allows a user with contributor privileges to perform arbitrary file deletion on the system. Recommendations Update to a version newer than 1.17.7...

7.1CVSS5.9AI score0.00294EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 6:43 p.m.5 views

GO-2026-5383 FileBrowser Public Share DELETE API Path Traversal Allows Unauthenticated Arbitrary File Deletion in github.com/gtsteffaniak/filebrowser

FileBrowser Public Share DELETE API Path Traversal Allows Unauthenticated Arbitrary File Deletion in github.com/gtsteffaniak/filebrowser...

9.1CVSS5.8AI score0.00523EPSS
Exploits1References3
CVE
CVE
added 2026/06/25 1:12 p.m.15 views

CVE-2026-56054

CVE-2026-56054 affects the WordPress JS Help Desk plugin (versions &lt;= 3.1.1). The vulnerability allows Arbitrary File Deletion within the plugin, with impact described as high (availability impact) and CVSS 3.1 base score 7.7. The advisory does not provide root cause specifics or remediation s...

7.7CVSS5.8AI score0.0045EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/25 1:12 p.m.34 views

CVE-2026-56054 WordPress JS Help Desk plugin <= 3.1.1 - Arbitrary File Deletion vulnerability

Subscriber Arbitrary File Deletion in JS Help Desk = 3.1.1 versions...

7.7CVSS0.0045EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 1:12 p.m.7 views

EUVD-2026-39383

Subscriber Arbitrary File Deletion in JS Help Desk = 3.1.1 versions...

7.7CVSS5.8AI score0.0045EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 12:33 a.m.8 views

EUVD-2026-39113

ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the uploadSSL...

5.5CVSS6.4AI score0.01195EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/25 12:33 a.m.6 views

EUVD-2026-39112

ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS6.4AI score0.01195EPSS
Exploits0References3
NVD
NVD
added 2026/06/24 10:16 p.m.10 views

CVE-2026-9775

ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the uploadSSL...

6.5CVSS0.01195EPSS
Exploits0References2
NVD
NVD
added 2026/06/24 10:16 p.m.11 views

CVE-2026-9774

ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

6.5CVSS0.01195EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 9:36 p.m.12 views

CVE-2026-9775

CVE-2026-9775 concerns ATEN Unizon uploadSSL, where a directory traversal flaw allows an attacker to delete arbitrary files due to improper validation of a user-supplied path in file operations. The vulnerability can result in file deletion or denial-of-service, with authentication required and n...

6.5CVSS6.4AI score0.01195EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/06/24 9:36 p.m.19 views

CVE-2026-9775 ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability

ATEN Unizon uploadSSL Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the uploadSSL...

5.5CVSS0.01195EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/24 9:36 p.m.19 views

CVE-2026-9774 ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability

ATEN Unizon updateLicense Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of ATEN Unizon. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS0.01195EPSS
Exploits0References2
CVE
CVE
added 2026/06/24 9:36 p.m.17 views

CVE-2026-9774

CVE-2026-9774 affects ATEN Unizon via the updateLicense directory traversal, enabling arbitrary file deletion. The flaw stems from insufficient validation of a user-supplied path used in file operations. The vulnerability is exploitable remotely over network with authentication required; impact i...

6.5CVSS6.4AI score0.01195EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/06/24 5:17 p.m.2 views

CVE-2026-55611 AnythingLLM: embed-parsed-file cleanup deletes any parsed file by ID without ownership scoping (cross-tenant IDOR deletion)

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. From 1.11.1 until 1.14.1, userId/workspaceId scoping to the parsed-files read/delete paths was added. However, the POST /api/workspace/:slug/embed-parsed-file/:fileId flow...

6AI score0.00236EPSS
Exploits0References5
Rows per page
Query Builder