Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/03/09 7:54 p.m.2 views

CVE-2026-3749

A weakness has been identified in Bytedesk up to 1.3.9. This vulnerability affects the function handleFileUpload of the file source-code/src/main/java/com/bytedesk/core/upload/UploadRestService.java of the component SVG File Handler. Executing a manipulation can lead to unrestricted upload. The...

8.8CVSS5.4AI score0.00147EPSS
Exploits1References1
EUVD
EUVDadded 2026/03/08 6:30 p.m.1 views

EUVD-2026-10252

A weakness has been identified in Bytedesk up to 1.3.9. This vulnerability affects the function handleFileUpload of the file source-code/src/main/java/com/bytedesk/core/upload/UploadRestService.java of the component SVG File Handler. Executing a manipulation can lead to unrestricted upload. The...

6.5CVSS6.2AI score0.00147EPSS
Exploits1References10
Vulnrichment
Vulnrichmentadded 2026/03/08 4:2 p.m.1 views

CVE-2026-3749 Bytedesk SVG File UploadRestService.java handleFileUpload unrestricted upload

A weakness has been identified in Bytedesk up to 1.3.9. This vulnerability affects the function handleFileUpload of the file source-code/src/main/java/com/bytedesk/core/upload/UploadRestService.java of the component SVG File Handler. Executing a manipulation can lead to unrestricted upload. The...

6.5CVSS5.4AI score0.00147EPSS
Exploits1References9
CVE
CVEadded 2026/03/08 4:2 p.m.9 views

CVE-2026-3749

Summary: CVE-2026-3749 affects Bytedesk up to version 1.3.9, specifically the handleFileUpload function in UploadRestService.java within the SVG File Handler. The issue permits manipulation leading to unrestricted file uploads and can be exploited remotely; a public exploit is available. A fix is...

8.8CVSS6.2AI score0.00147EPSS
Exploits1References9Affected Software1
CNNVD
CNNVDadded 2026/03/08 12:0 a.m.2 views

Bytedesk 代码问题漏洞

Bytedesk is a multi-channel intelligent customer service platform developed by the individual developers of bytedesk.com. Versions of Bytedesk 1.3.9 and earlier have code vulnerabilities. These vulnerabilities stem from operations on the handleFileUpload function in the UploadRestService.java fil...

8.8CVSS6.7AI score0.00147EPSS
Exploits1References8
OSV
OSVadded 2023/10/27 2:15 a.m.1 views

CVE-2023-5812

A vulnerability has been found in flusity CMS and classified as critical. Affected by this vulnerability is the function handleFileUpload of the file core/tools/upload.php. The manipulation of the argument uploadedfile leads to unrestricted upload. The attack can be launched remotely. The exploit...

8.8CVSS5.5AI score
Exploits0References3
Positive Technologies
Positive Technologiesadded 2023/10/27 12:0 a.m.2 views

PT-2023-32346 · Unknown · Flusity-Cms

Name of the Vulnerable Software and Affected Versions: flusity CMS affected versions not specified Description: A critical issue has been discovered, affecting the handleFileUpload function in the core/tools/upload.php file. The manipulation of the uploaded file argument leads to unrestricted...

8.8CVSS5AI score0.00062EPSS
Exploits1References4
ATTACKERKB
ATTACKERKBadded 2022/07/19 7:15 p.m.2 views

CVE-2022-36303

Vesta v1.0.0-5 was discovered to contain a cross-site scripting XSS vulnerability via the handlefileupload function at /web/api/v1/upload/UploadHandler.php...

6.1CVSS6.2AI score0.0023EPSS
Exploits1References2
Rows per page
Query Builder