Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

708 matches found

Prion
Prionadded 2023/11/27 9:15 p.m.18 views

Path traversal

OroPlatform is a PHP Business Application Platform BAP designed to make development of custom business applications easier and faster. Path Traversal is possible in Oro\Bundle\GaufretteBundle\FileManager::getTemporaryFileName. With this method, an attacker can pass the path to a non-existent file...

7.5CVSS7.2AI score0.00414EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2023/11/27 8:27 p.m.35 views

CVE-2022-41951

CVE-2022-41951 – Path traversal in OroPlatform is caused by a vulnerability in the file manager routine getTemporaryFileName in Oro\Bundle\GaufretteBundle\FileManager, which could allow an attacker to write to a new file by supplying a path to a non-existent file. The root cause involves unsafe h...

9.8CVSS9.2AI score0.00414EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2023/08/25 9:15 p.m.13 views

CVE-2023-40166

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

5.5CVSS5.9AI score0.00093EPSS
Exploits1References1
Prion
Prionadded 2023/08/25 9:15 p.m.13 views

Heap overflow

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

1.9CVSS6.2AI score0.00093EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/08/25 8:20 p.m.13 views

CVE-2023-40166 Notepad++ heap buffer read overflow in FileManager::detectLanguageFromTextBegining

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

5.5CVSS7.2AI score0.00093EPSS
Exploits1References1
CVE
CVEadded 2023/08/25 8:20 p.m.166 views

CVE-2023-40166

CVE-2023-40166 affects Notepad++ versions prior to 8.5.7. The issue is a heap buffer read overflow in FileManager::detectLanguageFromTextBegining, which can leak internal memory information and, per related advisories, may enable arbitrary code execution under some conditions. Public exploits exi...

5.5CVSS5.8AI score0.00093EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2023/08/25 8:20 p.m.13 views

CVE-2023-40166 Notepad++ heap buffer read overflow in FileManager::detectLanguageFromTextBegining

Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in FileManager::detectLanguageFromTextBegining . The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. ...

5.5CVSS6.2AI score0.00093EPSS
Exploits1References1
CNNVD
CNNVDadded 2023/08/25 12:0 a.m.2 views

Notepad++ 安全漏洞

Notepad++ is an open source plain text editor by Don Ho, an individual developer in Taiwan, China. A security vulnerability exists in Notepad++, which stems from a heap buffer read overflow vulnerability in the FileManager::detectLanguageFromTextBegining function...

5.5CVSS5.9AI score0.00093EPSS
Exploits1References2
Packet Storm
Packet Stormadded 2023/07/02 12:0 a.m.210 views

AngularJS Filemanager 1.5.1 Shell Upload

==================================================================================================================================== | Title : AngularJS Filemanager v1.5.1 File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro | | Vendor :...

7.1AI score
Exploits0
NVD
NVDadded 2023/06/28 3:15 p.m.20 views

CVE-2022-44276

In Responsive Filemanager 9.12.0, an attacker can bypass upload restrictions resulting in RCE...

9.8CVSS9.5AI score0.26554EPSS
Exploits2References1
ATTACKERKB
ATTACKERKBadded 2023/06/28 3:15 p.m.1 views

CVE-2022-44276

In Responsive Filemanager 9.12.0, an attacker can bypass upload restrictions resulting in RCE...

9.8CVSS5.8AI score0.26554EPSS
Exploits2References2
Prion
Prionadded 2023/06/28 3:15 p.m.15 views

Design/Logic Flaw

In Responsive Filemanager 9.12.0, an attacker can bypass upload restrictions resulting in RCE...

7.5CVSS9.4AI score0.26554EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/06/28 12:0 a.m.12 views

CVE-2022-44276

In Responsive Filemanager 9.12.0, an attacker can bypass upload restrictions resulting in RCE...

6.9AI score0.26554EPSS
Exploits2References1
CNNVD
CNNVDadded 2023/06/28 12:0 a.m.1 views

Responsive Filemanager 代码问题漏洞

Responsive FileManager is a free open source file manager from the individual developer Alberto Peripolli. A security vulnerability exists in Responsive Filemanager versions prior to 9.12.0 that originated from a vulnerability that allows an attacker to bypass upload restrictions, which could lea...

9.8CVSS8.6AI score0.26554EPSS
Exploits2References2
Positive Technologies
Positive Technologiesadded 2023/06/28 12:0 a.m.4 views

PT-2023-14442 · Unknown · Responsive Filemanager

Name of the Vulnerable Software and Affected Versions: Responsive Filemanager versions prior to 9.12.0 Description: The issue allows an attacker to bypass upload restrictions, resulting in remote code execution RCE. Recommendations: For versions prior to 9.12.0, update to version 9.12.0 or later ...

9.8CVSS9.8AI score0.26554EPSS
Exploits2References3
Cvelist
Cvelistadded 2023/06/28 12:0 a.m.22 views

CVE-2022-44276

In Responsive Filemanager 9.12.0, an attacker can bypass upload restrictions resulting in RCE...

9.7AI score0.26554EPSS
Exploits2References1
CVE
CVEadded 2023/06/28 12:0 a.m.69 views

CVE-2022-44276

CVE-2022-44276 affects Responsive Filemanager prior to 9.12.0. The vulnerability allows bypassing upload restrictions in the file upload workflow, enabling remote code execution (RCE). Technical details from the PoC show exploitation via manipulated filenames and MIME-check logic (e.g., fix_filen...

9.8CVSS9.4AI score0.26554EPSS
Exploits2References1Affected Software1
GithubExploit
GithubExploitadded 2023/06/24 7:28 p.m.4 views

Exploit for Unrestricted Upload of File with Dangerous Type in Tecrail Responsive_Filemanager

CVE-2022-44276-PoC PoC for Responsive Filemanager 9.12.0...

9.8CVSS7.4AI score0.26554EPSS
Exploits2
0day.today
0day.todayadded 2023/04/06 12:0 a.m.248 views

flatnux 2021-03.25 - Remote Code Execution (Authenticated) Vulnerability

Exploit Title: flatnux-2021-03.25 - Remote Code Execution Authenticated Exploit Author: Ömer Hasan Durmuş Vendor Homepage: https://en.altervista.org Software Link: http://flatnux.altervista.org/flatnux.html Version: 2021-03.25 Tested on: Windows/Linux POST...

6.8AI score
Exploits0
Exploit DB
Exploit DBadded 2023/04/05 12:0 a.m.249 views

Responsive FileManager 9.9.5 - Remote Code Execution (RCE)

Exploit Title: Responsive FileManager 9.9.5 - Remote Code Execution RCE Date: 02-Feb-2023 Exploit Author: Galoget Latorre @galoget Vendor Homepage: https://responsivefilemanager.com Software Link: https://github.com/trippo/ResponsiveFilemanager/releases/download/v9.9.5/responsivefilemanager.zip...

8.8CVSS8.8AI score0.36582EPSS
Exploits5
Rows per page
Query Builder