Lucene search
+L

65 matches found

euvd
euvd
added 2026/06/15 9:30 p.m.11 views

EUVD-2026-36757

Bludit CMS before version 3.18.4 allows Remote Code Execution RCE via the API Plugin. The POST /api/files/key endpoint in bl-plugins/api/plugin.php fails to perform authorization checks and lacks file extension validation. An attacker with a valid API token can upload a malicious PHP script and...

6.2AI score0.00627EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/06/11 2:59 a.m.11 views

CVE-2026-44716

Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. From version 0.0.90 to before version 1.2.0, a path traversal vulnerability exists in Pipecat's development runner src/pipecat/runner/run.py. When the runner is started with the --folder...

7.5CVSS5.4AI score0.00423EPSS
Exploits1References1
thn
thn
added 2026/06/10 3:0 p.m.17 views

Langflow Vulnerability CVE-2026-5027 Exploited for Unauthenticated RCE

A high-severity security flaw in Langflow, an open-source low-code platform to build artificial intelligence AI applications, has come under active exploitation in the wild, according to findings from VulnCheck. The vulnerability in question is CVE-2026-5027 CVSS score: 8.8, a case of path...

8.8CVSS6.1AI score0.31405EPSS
Exploits4
redhatcve
redhatcve
added 2026/06/10 8:59 a.m.13 views

CVE-2026-46746

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 6. The application does not properly sanitize user input in the /api/sftp/uploadFiles endpoint, allowing the injection of shell command payloads via crafted directory names. These payloads are stored and executed when...

8.8CVSS6AI score0.00451EPSS
Exploits0References1
nvd
nvd
added 2026/06/10 12:16 a.m.17 views

CVE-2026-44716

Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. From version 0.0.90 to before version 1.2.0, a path traversal vulnerability exists in Pipecat's development runner src/pipecat/runner/run.py. When the runner is started with the --folder...

7.5CVSS0.00423EPSS
Exploits1References4
cvelist
cvelist
added 2026/06/09 11:7 p.m.39 views

CVE-2026-44716 Pipecat: Path Traversal in Pipecat Runner `/files` Endpoint — Arbitrary File Read via `%2F`-Encoded Separator

Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. From version 0.0.90 to before version 1.2.0, a path traversal vulnerability exists in Pipecat's development runner src/pipecat/runner/run.py. When the runner is started with the --folder...

7.5CVSS0.00423EPSS
Exploits1References4
vulnrichment
vulnrichment
added 2026/06/09 11:7 p.m.17 views

CVE-2026-44716 Pipecat: Path Traversal in Pipecat Runner `/files` Endpoint — Arbitrary File Read via `%2F`-Encoded Separator

Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. From version 0.0.90 to before version 1.2.0, a path traversal vulnerability exists in Pipecat's development runner src/pipecat/runner/run.py. When the runner is started with the --folder...

7.5CVSS5.4AI score0.00423EPSS
Exploits1References4
cve
cve
added 2026/06/09 11:7 p.m.28 views

CVE-2026-44716

Pipecat AI’s CVE-2026-44716 describes a path-traversal vulnerability in the Pipecat runner's GET /files/{filename:path} endpoint when started with --folder. The filename is joined to the base folder without containment checks, and percent-encoded slashes (e.g., ..%2F..%2F) bypass URL normalisatio...

7.5CVSS5.4AI score0.00423EPSS
Exploits1References4Affected Software1
osv
osv
added 2026/06/09 11:7 p.m.3 views

CVE-2026-44716 Pipecat: Path Traversal in Pipecat Runner `/files` Endpoint — Arbitrary File Read via `%2F`-Encoded Separator

Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. From version 0.0.90 to before version 1.2.0, a path traversal vulnerability exists in Pipecat's development runner src/pipecat/runner/run.py. When the runner is started with the --folder...

7.5CVSS7.1AI score0.00423EPSS
Exploits1References6
vulnrichment
vulnrichment
added 2026/06/09 8:46 a.m.8 views

CVE-2026-46747

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 6. The affected application does not properly sanitize path input in the GET /api/sftp/uploadFiles endpoint used for directory listing. This allows path traversal through crafted input, enabling access to unintended fil...

5.3CVSS5.4AI score0.00242EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/09 8:46 a.m.39 views

CVE-2026-46747

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 6. The affected application does not properly sanitize path input in the GET /api/sftp/uploadFiles endpoint used for directory listing. This allows path traversal through crafted input, enabling access to unintended fil...

5.3CVSS0.00242EPSS
Exploits0References1
euvd
euvd
added 2026/06/09 8:46 a.m.13 views

EUVD-2026-35384

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 6. The affected application does not properly sanitize path input in the GET /api/sftp/uploadFiles endpoint used for directory listing. This allows path traversal through crafted input, enabling access to unintended fil...

5.3CVSS5.4AI score0.00242EPSS
Exploits0References1
cvelist
cvelist
added 2026/06/09 8:46 a.m.41 views

CVE-2026-46746

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 6. The application does not properly sanitize user input in the /api/sftp/uploadFiles endpoint, allowing the injection of shell command payloads via crafted directory names. These payloads are stored and executed when...

8.8CVSS0.00451EPSS
Exploits0References1
cve
cve
added 2026/06/09 8:46 a.m.43 views

CVE-2026-46746

Vulnerability summary (CVE-2026-46746): In Siemens SINEC INS, all versions prior to V1.0 SP2 Update 6 expose a flaw in the /api/sftp/uploadFiles endpoint. The app does not properly sanitize user input, enabling injection of shell command payloads via crafted directory names. These payloads are st...

8.8CVSS6AI score0.00451EPSS
Exploits0References1Affected Software1
vulncheck_kev
vulncheck_kev
added 2026/06/08 12:0 a.m.30 views

VulnCheck KEV: CVE-2026-5027

The 'POST /api/v2/files' endpoint does not sanitize the 'filename' parameter from the multipart form data, allowing an attacker to write files to arbitrary locations on the filesystem using path traversal sequences '../'...

8.8CVSS5.6AI score0.31405EPSS
In wildExploits4References27
redhatcve
redhatcve
added 2026/06/05 7:12 p.m.11 views

CVE-2026-39942

Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, the PATCH /files/id endpoint accepts a user-controlled filenamedisk parameter. By setting this value to match the storage path of another user's file, an attacker can overwrite that file's content...

8.8CVSS5.6AI score0.00204EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/06/02 12:0 a.m.19 views

PT-2026-45883

Name of the Vulnerable Software and Affected Versions LibreChat versions prior to 0.8.4 Description A cross-agent integrity violation exists where a shared-agent editor can delete file records globally. By using the "DELETE /api/files" endpoint, an editor can remove files that the owner has reuse...

7.2CVSS5.8AI score0.00265EPSS
Exploits1References3
nvd
nvd
added 2026/05/26 5:16 p.m.13 views

CVE-2026-40384

An improper validation of the search parameter of the commedia files API endpoint leads to a path traversal vulnerability...

7.5CVSS0.00445EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/05/26 4:45 p.m.9 views

CVE-2026-40384

An improper validation of the search parameter of the commedia files API endpoint leads to a path traversal vulnerability...

5.9CVSS5.8AI score0.00445EPSS
Exploits0References2Affected Software1
github
github
added 2026/05/15 4:55 p.m.14 views

Pipecat: Path Traversal in Pipecat Runner `/files` Endpoint — Arbitrary File Read via `%2F`-Encoded Separator

Summary A path traversal vulnerability exists in Pipecat's development runner src/pipecat/runner/run.py. When the runner is started with the --folder flag, it exposes a GET /files/filename:path download endpoint. The filename path parameter is concatenated directly onto args.folder with no...

7.5CVSS5.9AI score0.00423EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder