Lucene search
K

5 matches found

Veracode
Veracode
added 2026/05/30 7:9 a.m.9 views

Path Traversal

lsfusion.platform, web-client is vulnerable to Path Traversal. The vulnerability is due to improper validation of the sid argument in the UploadFileRequestHandler component, which allows a remote attacker to perform path traversal by manipulating the parameter and accessing files outside the...

9.8CVSS7.2AI score0.00513EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2026/05/06 7:8 a.m.17 views

CVE-2026-35254

CVE-2026-35254 affects Oracle OCI CLI (Oracle Open Source Projects) with affected version 3.77. The vulnerability enables an unauthenticated, network-accessible attacker to cause Oracle OCI CLI to place imported files outside the intended directory, indicating a path traversal-like impact. CVSS3....

6.1CVSS5.8AI score0.00146EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/04/04 6:15 p.m.3 views

CVE-2024-25693

There is a path traversal in Esri Portal for ArcGIS versions = 11.2. Successful exploitation may allow a remote, authenticated attacker to traverse the file system to access files or execute code outside of the intended directory...

9.9CVSS5.7AI score0.01265EPSS
Exploits0References1
OSV
OSV
added 2020/08/21 9:15 p.m.2 views

UBUNTU-CVE-2020-8227

Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory...

6.8CVSS5.8AI score0.2245EPSS
Exploits1References4
Cvelist
Cvelist
added 2020/08/21 8:33 p.m.39 views

CVE-2020-8227

Missing sanitization of a server response in Nextcloud Desktop Client 2.6.4 for Linux allowed a malicious Nextcloud Server to store files outside of the dedicated sync directory...

6.6AI score0.2245EPSS
Exploits1References3
Rows per page
Query Builder