Lucene search
K

11274 matches found

OSV
OSV
added 2026/03/11 7:5 p.m.3 views

CVE-2026-31894 WeGIA affected by arbitrary file read via symlink in backup restore

WeGIA is a web manager for charitable institutions. In 3.6.5, The patched loadBackupDB extracts tar.gz archives to a temporary directory using PHP's PharData class, then uses glob and filegetcontents to read SQL files from the extracted contents. Neither the extraction nor the file reading...

6.9CVSS5.8AI score0.00414EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/11 6:23 p.m.4 views

CVE-2019-25472 IntelBras Telefone IP TIP200/200 LITE Arbitrary File Read via dumpConfigFile

IntelBras Telefone IP TIP200 and 200 LITE contain an unauthenticated arbitrary file read vulnerability in the dumpConfigFile function accessible via the cgiServer.exx endpoint. Attackers can send GET requests to /cgi-bin/cgiServer.exx with the command parameter containing dumpConfigFile to read...

8.7CVSS5.9AI score0.00301EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/11 6:23 p.m.2 views

CVE-2019-25472

IntelBras Telefone IP TIP200 and 200 LITE contain an unauthenticated arbitrary file read vulnerability in the dumpConfigFile function accessible via the cgiServer.exx endpoint. Attackers can send GET requests to /cgi-bin/cgiServer.exx with the command parameter containing dumpConfigFile to read...

8.7CVSS5.9AI score0.00301EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/11 6:23 p.m.29 views

CVE-2019-25472 IntelBras Telefone IP TIP200/200 LITE Arbitrary File Read via dumpConfigFile

IntelBras Telefone IP TIP200 and 200 LITE contain an unauthenticated arbitrary file read vulnerability in the dumpConfigFile function accessible via the cgiServer.exx endpoint. Attackers can send GET requests to /cgi-bin/cgiServer.exx with the command parameter containing dumpConfigFile to read...

8.7CVSS0.00301EPSS
Exploits0References3
CVE
CVE
added 2026/03/11 6:23 p.m.7 views

CVE-2019-25472

Intelbras Telefone IP TIP200 and TIP200 LITE are affected by an unauthenticated arbitrary file read via the dumpConfigFile function in /cgi-bin/cgiServer.exx. By sending a GET request to /cgi-bin/cgiServer.exx with the command parameter containing dumpConfigFile(), attackers can read sensitive fi...

8.7CVSS5.9AI score0.00301EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/11 4:21 p.m.6 views

SUSE CVE-2026-0846

A vulnerability in the filestring function of the nltk.util module in nltk version 3.9.2 allows arbitrary file read due to improper validation of input paths. The function directly opens files specified by user input without sanitization, enabling attackers to access sensitive system files by...

8.6CVSS5.8AI score0.00428EPSS
Exploits1References3
NVD
NVD
added 2026/03/11 4:16 p.m.4 views

CVE-2026-30234

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, an authenticated project member with BCF import permissions can upload a crafted .bcf archive where the value in markup.bcf is manipulated to contain an absolute or traversal local path for example: /etc/passwd...

6.5CVSS0.00302EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/11 3:59 p.m.2 views

CVE-2026-30234

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, an authenticated project member with BCF import permissions can upload a crafted .bcf archive where the value in markup.bcf is manipulated to contain an absolute or traversal local path for example: /etc/passwd...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/11 3:59 p.m.3 views

EUVD-2026-11202

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, an authenticated project member with BCF import permissions can upload a crafted .bcf archive where the value in markup.bcf is manipulated to contain an absolute or traversal local path for example: /etc/passwd...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/11 3:59 p.m.2 views

CVE-2026-30234 OpenProject BIM BCF XML Import: <Snapshot> Path Traversal Leads to Arbitrary Local File Read (AFR)

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, an authenticated project member with BCF import permissions can upload a crafted .bcf archive where the value in markup.bcf is manipulated to contain an absolute or traversal local path for example: /etc/passwd...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References1
CVE
CVE
added 2026/03/11 3:59 p.m.12 views

CVE-2026-30234

OpenProject prior to 17.2.0 is affected. An authenticated project member with BCF import permissions can upload a crafted .bcf archive where the value in markup.bcf is manipulated to contain an absolute or path traversal (e.g., /etc/passwd or ../../../../etc/passwd). During import, this untruste...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/11 3:59 p.m.26 views

CVE-2026-30234 OpenProject BIM BCF XML Import: <Snapshot> Path Traversal Leads to Arbitrary Local File Read (AFR)

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, an authenticated project member with BCF import permissions can upload a crafted .bcf archive where the value in markup.bcf is manipulated to contain an absolute or traversal local path for example: /etc/passwd...

6.5CVSS0.00302EPSS
Exploits0References1
OSV
OSV
added 2026/03/11 3:59 p.m.5 views

CVE-2026-30234 OpenProject BIM BCF XML Import: <Snapshot> Path Traversal Leads to Arbitrary Local File Read (AFR)

OpenProject is an open-source, web-based project management software. Prior to 17.2.0, an authenticated project member with BCF import permissions can upload a crafted .bcf archive where the value in markup.bcf is manipulated to contain an absolute or traversal local path for example: /etc/passwd...

6.5CVSS5.8AI score0.00302EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/11 2:58 p.m.2 views

CVE-2026-3013 Path Traversal in Coppermine Photo Gallery

Coppermine Photo Gallery in versions 1.6.09 through 1.6.27 is vulnerable to path traversal. Unauthenticated remote attacker is able to exploit a vulnerable endpoint and construct payloads that allow to read content of any file accessible by the the web server process.This issue was fixed in versi...

8.7CVSS5.8AI score0.00532EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/11 2:58 p.m.27 views

CVE-2026-3013 Path Traversal in Coppermine Photo Gallery

Coppermine Photo Gallery in versions 1.6.09 through 1.6.27 is vulnerable to path traversal. Unauthenticated remote attacker is able to exploit a vulnerable endpoint and construct payloads that allow to read content of any file accessible by the the web server process.This issue was fixed in versi...

8.7CVSS0.00532EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/11 1:32 p.m.25 views

CVE-2026-32061 OpenClaw < 2026.2.17 - Arbitrary File Read via $include Directive Path Traversal

OpenClaw versions prior to 2026.2.17 contain a path traversal vulnerability in the $include directive resolution that allows reading arbitrary local files outside the config directory boundary. Attackers with config modification capabilities can exploit this by specifying absolute paths, traversa...

6.7CVSS0.00146EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/11 1:32 p.m.2 views

CVE-2026-32061 OpenClaw < 2026.2.17 - Arbitrary File Read via $include Directive Path Traversal

OpenClaw versions prior to 2026.2.17 contain a path traversal vulnerability in the $include directive resolution that allows reading arbitrary local files outside the config directory boundary. Attackers with config modification capabilities can exploit this by specifying absolute paths, traversa...

6.7CVSS5.9AI score0.00146EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/03/11 8:30 a.m.6 views

WordPress The Events Calendar plugin <= 6.15.17 - Authenticated (Author+) Arbitrary File Read via ajax_create_import vulnerability

Authenticated Author+ Arbitrary File Read via ajaxcreateimport vulnerability discovered by Dmitrii Ignatyev - CleanTalk Inc in WordPress Plugin The Events Calendar versions = 6.15.17...

7.5CVSS5.8AI score0.0035EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/11 7:8 a.m.3 views

CVE-2026-3585

The The Events Calendar plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 6.15.17 via the 'ajaxcreateimport' function. This makes it possible for authenticated attackers, with Author-level access and above, to read the contents of arbitrary files on the...

7.5CVSS5.9AI score0.0035EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/03/11 12:11 a.m.7 views

Wisp Vulnerable to Path Traversal

Summary wisp.servestatic is vulnerable to arbitrary file read via percent-encoded path traversal %2e%2e. The directory traversal sanitization runs before percent-decoding, allowing encoded .. sequences to bypass the filter. An unauthenticated attacker can read any file readable by the application...

8.7CVSS5.9AI score0.01056EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder