Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1017 matches found

Prion
Prionadded 2022/12/14 12:15 p.m.10 views

Path traversal

A vulnerability classified as critical was found in scifio. Affected by this vulnerability is the function downloadAndUnpackResource of the file src/test/java/io/scif/util/DefaultSampleFilesService.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack can be...

7.5CVSS9.5AI score0.00582EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2022/12/14 12:15 p.m.12 views

Path traversal

A vulnerability, which was classified as critical, has been found in bspkrs MCPMappingViewer. Affected by this issue is the function extractZip of the file src/main/java/bspkrs/mmv/RemoteZipHandler.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack may be...

7.5CVSS9.3AI score0.00789EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2022/12/14 12:0 a.m.48 views

CVE-2022-4493

SCIFIO vulnerability CVE-2022-4493 affects the ZIP File Handler’s downloadAndUnpackResource in src/test/java/io/scif/util/DefaultSampleFilesService.java, enabling path traversal. The issue is remotely exploitable and tied to a patch identified by commit fcb0dbca0ec72b22fe0c9ddc8abc9cb188a0ff31. M...

9.8CVSS8AI score0.00582EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2022/12/14 12:0 a.m.1 views

PT-2022-27334 · Scifio · Scifio

Name of the Vulnerable Software and Affected Versions: scifio affected versions not specified Description: A critical vulnerability was found in scifio, affecting the function downloadAndUnpackResource of the file src/test/java/io/scif/util/DefaultSampleFilesService.java of the component ZIP File...

9.8CVSS9.4AI score0.00582EPSS
Exploits0References8
Cvelist
Cvelistadded 2022/12/14 12:0 a.m.11 views

CVE-2022-4493 scifio ZIP File DefaultSampleFilesService.java downloadAndUnpackResource path traversal

A vulnerability classified as critical was found in scifio. Affected by this vulnerability is the function downloadAndUnpackResource of the file src/test/java/io/scif/util/DefaultSampleFilesService.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack can be...

6.3CVSS9.8AI score0.00582EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2022/12/14 12:0 a.m.5 views

CVE-2022-4493 scifio ZIP File DefaultSampleFilesService.java downloadAndUnpackResource path traversal

A vulnerability classified as critical was found in scifio. Affected by this vulnerability is the function downloadAndUnpackResource of the file src/test/java/io/scif/util/DefaultSampleFilesService.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack can be...

6.3CVSS7.3AI score0.00582EPSS
Exploits0References2
CVE
CVEadded 2022/12/14 12:0 a.m.43 views

CVE-2022-4494

The CVE-2022-4494 entry affects bspkrs MCPMappingViewer, specifically the ZIP File Handler’s RemoteZipHandler.extractZip function. The root cause is a path traversal vulnerability in the extraction logic, which could be exploited remotely. The issue is documented with a patch identifier (6e602746...

9.8CVSS7.9AI score0.00789EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2022/12/14 12:0 a.m.4 views

CVE-2022-4494 bspkrs MCPMappingViewer ZIP File RemoteZipHandler.java extractZip path traversal

A vulnerability, which was classified as critical, has been found in bspkrs MCPMappingViewer. Affected by this issue is the function extractZip of the file src/main/java/bspkrs/mmv/RemoteZipHandler.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack may be...

6.3CVSS7.2AI score0.00789EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/12/14 12:0 a.m.2 views

PT-2022-27340 · Unknown · Bspkrs Mcpmappingviewer

Name of the Vulnerable Software and Affected Versions: bspkrs MCPMappingViewer affected versions not specified Description: A critical issue has been found in the extractZip function of the RemoteZipHandler.java file, part of the ZIP File Handler component. This issue leads to path traversal and...

9.8CVSS9.3AI score0.00789EPSS
Exploits0References6
Cvelist
Cvelistadded 2022/12/14 12:0 a.m.9 views

CVE-2022-4494 bspkrs MCPMappingViewer ZIP File RemoteZipHandler.java extractZip path traversal

A vulnerability, which was classified as critical, has been found in bspkrs MCPMappingViewer. Affected by this issue is the function extractZip of the file src/main/java/bspkrs/mmv/RemoteZipHandler.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack may be...

6.3CVSS9.7AI score0.00789EPSS
Exploits0References2
OSV
OSVadded 2022/12/07 6:30 p.m.16 views

GHSA-J453-HM5X-C46W Echo vulnerable to directory traversal

Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...

5.3CVSS5AI score0.00295EPSS
Exploits1References5
Github Security Blog
Github Security Blogadded 2022/12/07 6:30 p.m.15 views

Echo vulnerable to directory traversal

Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...

5.3CVSS5.3AI score0.00295EPSS
Exploits1References5Affected Software1
NVD
NVDadded 2022/12/07 5:15 p.m.9 views

CVE-2020-36565

Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...

5.3CVSS0.00295EPSS
Exploits1References3
OSV
OSVadded 2022/12/07 5:15 p.m.0 views

UBUNTU-CVE-2020-36565

Due to improper sanitization of user input on Windows, the static file handler allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...

5.3CVSS5.8AI score0.00295EPSS
Exploits1References5
CNNVD
CNNVDadded 2022/12/07 12:0 a.m.1 views

labstack echo 路径遍历漏洞

labstack echo is the high-performance, minimalist Go Web framework. A security vulnerability exists in the previous version of labstack echo v4.1.18-0.20201215153152-4422e3b66b9f, which stems from incorrect cleanup of user input on Windows, where the static file handler allows for directory...

5.3CVSS5.7AI score0.00295EPSS
Exploits1References4
NVD
NVDadded 2022/12/01 8:15 a.m.15 views

CVE-2022-4246

A vulnerability classified as problematic has been found in Kakao PotPlayer. This affects an unknown part of the component MID File Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. T...

7.5CVSS0.00347EPSS
Exploits0References3
Prion
Prionadded 2022/12/01 8:15 a.m.14 views

Design/Logic Flaw

A vulnerability classified as problematic has been found in Kakao PotPlayer. This affects an unknown part of the component MID File Handler. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. T...

5CVSS7.5AI score0.00347EPSS
Exploits0References3
CNNVD
CNNVDadded 2022/12/01 12:0 a.m.1 views

Kakao PotPlayer 安全漏洞

Kakao PotPlayer is a lightweight media player from Korea's Kakao Corporation that supports multiple formats. A security vulnerability exists in Kakao PotPlayer that stems from a problem in an unknown portion of the component MID File Handler, which could lead to a denial of service...

7.5CVSS7.2AI score0.00347EPSS
Exploits0References4
CVE
CVEadded 2022/12/01 12:0 a.m.65 views

CVE-2022-4246

CVE-2022-4246 affects Kakao PotPlayer, specifically an unknown portion of the MID File Handler. The available documents report a denial-of-service condition that can be triggered remotely and note that the exploit has been disclosed publicly. No concrete affected versions or remediation are provi...

7.5CVSS5.9AI score0.00347EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2022/12/01 12:0 a.m.1 views

PT-2022-26443 · Kakao · Kakao Potplayer

Name of the Vulnerable Software and Affected Versions: Kakao PotPlayer affected versions not specified Description: A problematic issue has been found in the MID File Handler component of Kakao PotPlayer, leading to denial of service. The manipulation can be initiated remotely. The exploit has be...

7.5CVSS4.7AI score0.00347EPSS
Exploits0References12
Rows per page
Query Builder