Lucene search
K

403 matches found

Cvelist
Cvelist
added 2026/05/11 3:20 p.m.39 views

CVE-2026-6815 CVE-2026-6815

An arbitrary file write vulnerability exists in Casdoor's Local File System storage provider. Due to insufficient path sanitization, an authenticated attacker with administrative privileges can perform a Path Traversal attack to create or overwrite arbitrary files anywhere on the host filesystem,...

0.00513EPSS
Exploits5References1
Snyk
Snyk
added 2026/05/07 1:23 a.m.9 views

Directory Traversal

Overview github.com/rancher/rancher/pkg/nodeconfig is a complete container management platform Affected versions of this package are vulnerable to Directory Traversal via the compressedEndpoint field in a UIPlugin deployment. An attacker can overwrite binaries or configuration files, tamper with...

9.3CVSS6.3AI score0.00368EPSS
Exploits0References2
OSV
OSV
added 2026/05/07 1:23 a.m.6 views

GHSA-5V3H-X4WF-5C35 Rancher Extensions have arbitrary file access via path traversal

Impact A vulnerability has been identified in Rancher's Extensions where malicious code can be injected in Rancher through a path traversal in the compressedEndpoint field inside a UIPlugin deployment. A malicious UI extension could abuse that to: - Overwrite Rancher binaries or configuration to...

8.4CVSS5.7AI score0.00368EPSS
Exploits0References4
Snyk
Snyk
added 2026/05/07 1:23 a.m.7 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the compressedEndpoint field in a UIPlugin deployment. An attacker can overwrite binaries or configuration files, tamper with cluster state, or write to the host node filesystem by exploiting path traversal in th...

9.3CVSS6.3AI score0.00368EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/06 6:30 p.m.14 views

EUVD-2026-27873

NanoClaw contains a host/container filesystem boundary vulnerability in outbound attachment handling and outbox cleanup that allows a compromised or prompt-injected container to read files outside the intended outbox directory by supplying crafted messagesout.id and content.files values or creati...

9.3CVSS5.9AI score0.00148EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.16 views

PT-2026-37662

Name of the Vulnerable Software and Affected Versions NanoClaw affected versions not specified Description A host/container filesystem boundary issue exists in outbound attachment handling and outbox cleanup. A compromised or prompt-injected container can read files outside the intended outbox...

9.3CVSS5.9AI score0.00148EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.14 views

RHCOS 3 : OpenShift Container Platform 3.11.524 (RHSA-2021:3646)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:3646 advisory. - kubernetes: Symlink exchange can allow host filesystem access CVE-2021-25741 Note that Nessus has not tested for this issue but has instead...

8.8CVSS5.8AI score0.06505EPSS
Exploits1References4
Snyk
Snyk
added 2026/05/05 5:30 p.m.8 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the fileName parameter during a file upload operation. An attacker can bypass intended storage boundaries and write arbitrary files to any location on the host filesystem accessible by the Java process by supplyi...

10CVSS6.5AI score0.03678EPSS
Exploits1References2
Snyk
Snyk
added 2026/05/05 5:30 p.m.7 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the fileName parameter during a file upload operation. An attacker can bypass intended storage boundaries and write arbitrary files to any location on the host filesystem accessible by the Java process by supplyi...

10CVSS6.5AI score0.03678EPSS
Exploits1References2
OSV
OSV
added 2026/04/25 11:34 p.m.8 views

GHSA-74M3-9QVM-RP9H zrok: WebDAV drive backend follows symlinks outside DriveRoot, enabling host filesystem read/write

Summary The zrok WebDAV drive backend davServer.Dir restricts path traversal through lexical normalization but does not prevent symlink following. When a symbolic link inside the shared DriveRoot points to a location outside that root, remote WebDAV consumers can read files and—on shares without...

8.7CVSS5.9AI score0.0033EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/04/25 11:34 p.m.12 views

zrok: WebDAV drive backend follows symlinks outside DriveRoot, enabling host filesystem read/write

Summary The zrok WebDAV drive backend davServer.Dir restricts path traversal through lexical normalization but does not prevent symlink following. When a symbolic link inside the shared DriveRoot points to a location outside that root, remote WebDAV consumers can read files and—on shares without...

8.7CVSS5.7AI score0.0033EPSS
Exploits0References5Affected Software2
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.12 views

PT-2026-37189

Name of the Vulnerable Software and Affected Versions zrok versions prior to 2.0.2 Description The zrok WebDAV drive backend davServer.Dir restricts path traversal through lexical normalization but fails to prevent symlink following. If a symbolic link within the shared DriveRoot points to a...

8.7CVSS5.8AI score0.0033EPSS
Exploits0References10
OSV
OSV
added 2026/04/16 10:45 p.m.5 views

GHSA-3PW3-V88X-XJ24 Paperclip: Arbitrary File Read via Agent-Controlled adapterConfig.instructionsFilePath

Summary Paperclip contains an arbitrary file read vulnerability that allows an attacker with an Agent API key to read files from the Paperclip server host filesystem. The vulnerability occurs because agents are allowed to modify their own adapterConfig through the /agents/:id API endpoint. The...

6.5CVSS6.1AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/16 10:45 p.m.22 views

Paperclip: Arbitrary File Read via Agent-Controlled adapterConfig.instructionsFilePath

Summary Paperclip contains an arbitrary file read vulnerability that allows an attacker with an Agent API key to read files from the Paperclip server host filesystem. The vulnerability occurs because agents are allowed to modify their own adapterConfig through the /agents/:id API endpoint. The...

6.1AI score
Exploits0References2Affected Software1
Anthropic
Anthropic
added 2026/04/12 6:56 a.m.13 views

ANT-2026-BRQZSDGZ · minio · path-traversal

path-traversal medium GHSA-xh8f-g2qw-gcm7 Severity Claude critical · Security research firm high · Maintainer medium Discovered by Claude Mythos Preview REPORT Anthropic's analysis, sealed at approval. Disclosure to the maintainer was performed by Doyensec. ANT-2026-BRQZSDGZ: minio: path-traversa...

7.5CVSS7.5AI score0.83957EPSS
Exploits13
Cvelist
Cvelist
added 2026/04/07 9:29 p.m.26 views

CVE-2026-34079 Flatpak affected by arbitrary file deletion on the host filesystem

Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the caching for ld.so removes outdated cache files without properly checking that the app controlled path to the outdated cache is in the cache directory. This allows Flatpak apps to delete arbitrary files on t...

8.7CVSS0.00323EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/04/07 9:29 p.m.2 views

CVE-2026-34079

Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the caching for ld.so removes outdated cache files without properly checking that the app controlled path to the outdated cache is in the cache directory. This allows Flatpak apps to delete arbitrary files on t...

8.7CVSS5.5AI score0.00323EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/04/07 6:15 p.m.8 views

OpenClaw: Gateway hello snapshots exposed host config and state paths to non-admin clients

Summary Before OpenClaw 2026.4.2, the Gateway connect success snapshot exposed local configPath and stateDir metadata to non-admin clients. Low-privilege authenticated clients could learn host filesystem layout and deployment details that were not needed for their role. Impact A non-admin client...

5.3CVSS5.9AI score0.00283EPSS
Exploits0References5Affected Software1
GithubExploit
GithubExploit
added 2026/03/29 7:15 p.m.172 views

Exploit for Exposure of Resource to Wrong Sphere in Linuxfoundation Containerd

ZipSlip Container Escape Vulnerability in containerd CVE...

8.6CVSS7AI score0.18087EPSS
Exploits20
SUSE CVE
SUSE CVE
added 2026/03/28 12:24 a.m.5 views

SUSE CVE-2026-33897

Incus is a system container and virtual machine manager. Prior to version 6.23.0, instance template files can be used to cause arbitrary read or writes as root on the host server. Incus allows for pongo2 templates within instances which can be used at various times in the instance lifecycle to...

8.8CVSS6AI score0.00481EPSS
Exploits0References3
Rows per page
Query Builder