Lucene search
K

86 matches found

OSV
OSV
added 2026/03/03 9:37 p.m.3 views

GHSA-45CG-2683-GFMQ OpenClaw browser navigation guard allowed non-network URL schemes, enabling authenticated browser-tool users to access file:// local files

Impact assertBrowserNavigationAllowed validated only http:/https: network targets but implicitly allowed other schemes. An authenticated gateway user could navigate browser sessions to file:// URLs and read local files via browser snapshot/extraction flows. Affected Component -...

6.5CVSS5.9AI score0.00403EPSS
Exploits1References3
NVD
NVD
added 2026/03/03 8:16 p.m.5 views

CVE-2026-2606

IBM webMethods API Gateway on-prem 10.11 through 10.11Fix3210.15 to 10.15Fix2711.1 to 11.1Fix7 IBM webMethods API Management on-prem fails to properly validate user-supplied input passed to the url parameter on the /createapi endpoint. An attacker can modify this parameter to use a file:// URI...

6.5CVSS0.00302EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.5 views

PT-2026-22805

IBM webMethods API Gateway on-prem 10.11 through 10.11 Fix3210.15 to 10.15 Fix2711.1 to 11.1 Fix7 IBM webMethods API Management on-prem fails to properly validate user-supplied input passed to the url parameter on the /createapi endpoint. An attacker can modify this parameter to use a file:// URI...

6.5CVSS6.1AI score0.00302EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.5 views

PT-2026-26390

Impact assertBrowserNavigationAllowed validated only http:/https: network targets but implicitly allowed other schemes. An authenticated gateway user could navigate browser sessions to file:// URLs and read local files via browser snapshot/extraction flows. Affected Component -...

7.1CVSS5.8AI score0.00403EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2026/01/16 8:58 p.m.15 views

Crawl4AI Has Local File Inclusion in Docker API via file:// URLs

A local file inclusion vulnerability exists in the Crawl4AI Docker API. The /executejs, /screenshot, /pdf, and /html endpoints accept file:// URLs, allowing attackers to read arbitrary files from the server filesystem. Attack Vector: json POST /executejs "url": "file:///etc/passwd", "scripts":...

9.2CVSS6.9AI score0.00609EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.7 views

PT-2025-51776

@vitejs/plugin-rs provides React Server Components RSC support for Vite. Prior to version 0.5.8, the / vite rsc findSourceMapURL endpoint in @vitejs/plugin-rsc allows unauthenticated arbitrary file read during development mode. An attacker can read any file accessible to the Node.js process by...

7.5CVSS7AI score0.00552EPSS
Exploits0References6
Hacker One
Hacker One
added 2025/12/15 7:45 a.m.46 views

curl: Path Traversal Bypass in file:// URLs Due to Incomplete URL-Encoded Path Normalization

Summary: The dedotdotify function in lib/urlapi.c is responsible for removing path traversal sequences ../ and ./ from URLs according to RFC 3986. However, the function only recognizes literal forward slashes / when identifying path segments and does not handle URL-encoded slashes %2f or %2F. Thi...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Improper Limitation of a Pathname to a Restricted Directory (CVE-2019-9948)

urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggering a urllib.urlopen'localfile:///etc/passwd' call. This plugin only works with Tenable.ot. Please...

9.1CVSS6.8AI score0.11844EPSS
Exploits1References4
OSV
OSV
added 2025/11/12 8:16 p.m.4 views

DRUPAL-CORE-2025-008

The core system module handles downloads of private and temporary files. Contrib modules can define additional kinds of files schemes that may also be handled by the system module. In some cases, files may be served with the HTTP header Cache-Control: public when they should be uncacheable. This...

3.7CVSS6.5AI score0.00243EPSS
Exploits0References1
Veracode
Veracode
added 2025/11/03 8:21 a.m.10 views

Path Traversal

esm.sh is vulnerable to Path Traversal. The vulnerability is due to improper sanitization of user-supplied URL components allowing path-traversal and file-scheme requests by which an attacker can craft specially-formed requests that cause the server to read and return arbitrary local files or oth...

8.7CVSS8.8AI score0.01527EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-19302

Malware in sbrugna...

9.1CVSS7.5AI score0.11844EPSS
Exploits1References33
EUVD
EUVD
added 2025/10/03 8:7 p.m.14 views

EUVD-2022-25465

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.0011EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:34 p.m.23 views

CVE-2022-20205

In isFileUri of FileUtil.java, there is a possible way to bypass the check for a file:// scheme due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...

5.5CVSS5.5AI score0.0011EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/05 12:0 a.m.6 views

PT-2025-4134 · Spatie · Spatie/Browsershot

Name of the Vulnerable Software and Affected Versions: spatie/browsershot versions prior to 5.0.5 Description: The issue is related to improper input validation in the setHtml function, which can be bypassed by omitting slashes in the file URI, such as file:../../../../etc/passwd. This is due to...

8.8CVSS6.6AI score0.00437EPSS
Exploits0References15
Veracode
Veracode
added 2024/12/04 11:44 a.m.18 views

Local File System Validation Bypass

craftcms/cms is vulnerable to local file system validation bypass. The vulnerability is due to improper validation of file paths, allowing attackers to exploit a double file:// scheme to bypass restrictions and access or overwrite sensitive files...

8.4CVSS6.5AI score0.01138EPSS
Exploits1References2Affected Software1
Veracode
Veracode
added 2024/11/20 3:35 a.m.10 views

Improper File URI Scheme Validation

changedetection.io is vulnerable to improper file URI scheme validation. The vulnerability is due to a logic flaw in the issafeurl function, which improperly allows the file: scheme and insufficiently restricts access to local file paths when ALLOWFILEURI is set to false or undefined...

8.6CVSS6.4AI score0.00697EPSS
Exploits0References5Affected Software1
Snyk
Snyk
added 2024/11/13 2:12 p.m.3 views

Access Control Bypass

Overview craftcms/cms is a content management system. Affected versions of this package are vulnerable to Access Control Bypass through the normalizePath function, by utilizing a double file:// scheme to bypass local file system validation. Note: This is only exploitable if the administrator has ...

8.7CVSS6.6AI score0.01138EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/11/13 12:0 a.m.4 views

CraftCMS 路径遍历漏洞

CraftCMS is a content management system from CraftCMS, Inc. A path traversal vulnerability exists in CraftCMS versions 5.0.0-RC1 through 5.4.5.1 and 4.0.0-RC1 through 4.12.4.1, which stems from a vulnerability that could allow an attacker to inject a payload to remotely execute code by bypassing...

8.4CVSS6.8AI score0.01138EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/11/13 12:0 a.m.8 views

PT-2024-35157 · Craft Cms · Craft Cms

Name of the Vulnerable Software and Affected Versions: CraftCMS versions prior to 4.12.5 CraftCMS versions prior to 5.4.6 Description: A vulnerability in CraftCMS allows an attacker to bypass local file system validation by utilizing a double file:// scheme. This enables the attacker to specify...

9CVSS8.1AI score0.01138EPSS
Exploits1References13
OSV
OSV
added 2024/05/17 7:15 p.m.2 views

CVE-2024-5022

The file scheme of URLs would be hidden, resulting in potential spoofing of a website's address in the location bar This vulnerability affects Focus for iOS 126...

4.4CVSS5.8AI score0.00132EPSS
Exploits0References2
Rows per page
Query Builder