Lucene search
K

11269 matches found

CVE
CVE
added 2026/03/20 3:19 a.m.13 views

CVE-2026-32938

SiYuan desktop users running versions 3.6.0 and earlier are affected. The flaw in /api/lute/html2BlockDOM allows copying local files referenced by file:// links into the workspace assets directory without validating against a sensitive-path list. When combined with authenticated GET /assets/*path...

9.9CVSS5.7AI score0.00414EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/20 3:19 a.m.21 views

CVE-2026-32938 SiYuan has an Arbitrary File Read in its Desktop Publish Service

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the /api/lute/html2BlockDOM on the desktop copies local files pointed to by file:// links in pasted HTML into the workspace assets directory without validating paths against a sensitive-path list. Together with GET...

9.9CVSS0.00414EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/20 3:19 a.m.4 views

CVE-2026-32938 SiYuan has an Arbitrary File Read in its Desktop Publish Service

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the /api/lute/html2BlockDOM on the desktop copies local files pointed to by file:// links in pasted HTML into the workspace assets directory without validating paths against a sensitive-path list. Together with GET...

9.9CVSS5.8AI score0.00414EPSS
Exploits1References3
OSV
OSV
added 2026/03/20 3:19 a.m.4 views

CVE-2026-32938 SiYuan has an Arbitrary File Read in its Desktop Publish Service

SiYuan is a personal knowledge management system. In versions 3.6.0 and below, the /api/lute/html2BlockDOM on the desktop copies local files pointed to by file:// links in pasted HTML into the workspace assets directory without validating paths against a sensitive-path list. Together with GET...

9.9CVSS6.2AI score0.00414EPSS
Exploits1References5
NVD
NVD
added 2026/03/20 2:16 a.m.7 views

CVE-2026-32812

Admidio is an open-source user management solution. In versions 5.0.0 through 5.0.6, unrestricted URL fetch in the SSO Metadata API can result in SSRF and local file reads. The SSO Metadata fetch endpoint at modules/sso/fetchmetadata.php accepts an arbitrary URL via $GET'url', validates it only...

6.8CVSS0.00428EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/20 1:58 a.m.4 views

CVE-2026-32812

Admidio is an open-source user management solution. In versions 5.0.0 through 5.0.6, unrestricted URL fetch in the SSO Metadata API can result in SSRF and local file reads. The SSO Metadata fetch endpoint at modules/sso/fetchmetadata.php accepts an arbitrary URL via $GET'url', validates it only...

6.8CVSS5.8AI score0.00428EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/20 1:58 a.m.2 views

CVE-2026-32812 Admidio Vulnerable to SSRF and Local File Read via Unrestricted URL Fetch in SSO Metadata Endpoint

Admidio is an open-source user management solution. In versions 5.0.0 through 5.0.6, unrestricted URL fetch in the SSO Metadata API can result in SSRF and local file reads. The SSO Metadata fetch endpoint at modules/sso/fetchmetadata.php accepts an arbitrary URL via $GET'url', validates it only...

6.8CVSS5.8AI score0.00428EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/20 1:58 a.m.36 views

CVE-2026-32812 Admidio Vulnerable to SSRF and Local File Read via Unrestricted URL Fetch in SSO Metadata Endpoint

Admidio is an open-source user management solution. In versions 5.0.0 through 5.0.6, unrestricted URL fetch in the SSO Metadata API can result in SSRF and local file reads. The SSO Metadata fetch endpoint at modules/sso/fetchmetadata.php accepts an arbitrary URL via $GET'url', validates it only...

6.8CVSS0.00428EPSS
Exploits1References3
OSV
OSV
added 2026/03/20 1:58 a.m.4 views

CVE-2026-32812 Admidio Vulnerable to SSRF and Local File Read via Unrestricted URL Fetch in SSO Metadata Endpoint

Admidio is an open-source user management solution. In versions 5.0.0 through 5.0.6, unrestricted URL fetch in the SSO Metadata API can result in SSRF and local file reads. The SSO Metadata fetch endpoint at modules/sso/fetchmetadata.php accepts an arbitrary URL via $GET'url', validates it only...

6.8CVSS5.8AI score0.00428EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2026/03/20 12:0 a.m.4 views

IBM QRadar SIEM 7.5.x < 7.5.0 UP15 Multiple Vulnerabilities

According to its self-reported version, the IBM QRadar SIEM installation on the remote host is 7.5.x prior to 7.5.0 Update Pack 15. It is, therefore, affected by multiple vulnerabilities: - IBM QRadar SIEM could allow an attacker with access to one tenant to access hostname data from another...

6.2CVSS5.6AI score0.0018EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.6 views

PT-2026-26719

The EmailKit – Email Customizer for WooCommerce & WP plugin for WordPress is vulnerable to arbitrary file read via path traversal in all versions up to, and including, 1.6.3. This is due to the action function in the TemplateData class passing user-supplied input from the 'emailkit-editor-templat...

4.9CVSS5.9AI score0.00397EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.13 views

PT-2026-41141

Name of the Vulnerable Software and Affected Versions Portainer Community Edition versions 2.33.0 through 2.33.7 Portainer Community Edition versions 2.39.0 through 2.39.1 Portainer Community Edition versions prior to 2.41.0 Description Portainer supports deploying stacks from Git repositories...

9.9CVSS5.9AI score0.00416EPSS
Exploits2References13
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.4 views

PT-2026-26556

SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.7.0 contain a Server-Side Request Forgery SSRF vulnerability that allows an attacker to retrieve arbitrary system and application files from the server. An attacker can exploit the...

8.7CVSS6AI score0.00427EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.3 views

PT-2026-26689

Summary The Siyuan kernel exposes an unauthenticated file-serving endpoint under /appearance/filepath. Due to improper path sanitization, attackers can perform directory traversal and read arbitrary files accessible to the server process. Authentication checks explicitly exclude this endpoint,...

7.5CVSS6AI score0.03256EPSS
Exploits1References7
NVD
NVD
added 2026/03/19 10:16 p.m.4 views

CVE-2026-32033

OpenClaw versions prior to 2026.2.24 contain a path traversal vulnerability where @-prefixed absolute paths bypass workspace-only file-system boundary validation due to canonicalization mismatch. Attackers can exploit this by crafting @-prefixed paths like @/etc/passwd to read files outside the...

7.5CVSS0.00335EPSS
Exploits0References3
NVD
NVD
added 2026/03/19 10:16 p.m.4 views

CVE-2026-32022

OpenClaw versions prior to 2026.2.21 contain a stdin-only policy bypass vulnerability in the grep tool within tools.exec.safeBins that allows attackers to read arbitrary files by supplying a pattern via the -e flag parameter. Attackers can include a positional filename operand to bypass file acce...

6.5CVSS0.00259EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/19 10:7 p.m.17 views

CVE-2026-32026 OpenClaw < 2026.2.24 - Arbitrary File Read via Improper Temporary Path Validation in Sandbox

OpenClaw versions prior to 2026.2.24 contain an improper path validation vulnerability in sandbox media handling that allows absolute paths under the host temporary directory outside the active sandbox root. Attackers can exploit this by providing malicious media references to read and exfiltrate...

7.1CVSS0.00344EPSS
Exploits0References5
CVE
CVE
added 2026/03/19 10:7 p.m.14 views

CVE-2026-32026

The CVE-2026-32026 issue affects OpenClaw before version 2026.2.24, where improper path validation in sandbox media handling permits access to absolute paths under the host temporary directory outside the active sandbox root. Exploitation via malicious media references in attachment delivery can ...

8.6CVSS5.9AI score0.00344EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/19 10:7 p.m.3 views

CVE-2026-32026 OpenClaw < 2026.2.24 - Arbitrary File Read via Improper Temporary Path Validation in Sandbox

OpenClaw versions prior to 2026.2.24 contain an improper path validation vulnerability in sandbox media handling that allows absolute paths under the host temporary directory outside the active sandbox root. Attackers can exploit this by providing malicious media references to read and exfiltrate...

7.1CVSS5.9AI score0.00344EPSS
Exploits0References5
CVE
CVE
added 2026/03/19 10:7 p.m.10 views

CVE-2026-32024

OpenClaw (npm) versions prior to 2026.2.22 are affected by a symlink traversal vulnerability in avatar handling that lets remote attackers read arbitrary files outside the configured workspace boundary by requesting avatar resources through gateway surfaces. The issue affects the openclaw package...

7.5CVSS5.9AI score0.00327EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder