CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/12 6:31 a.m.•6 views

EUVD-2026-29379

NVD•added 2026/05/12 6:16 a.m.•7 views

CVE-2026-41530

4.6CVSS0.00018EPSS

Vulnrichment•added 2026/05/12 5:21 a.m.•8 views

CVE-2026-41530

ATTACKERKB•added 2026/05/12 5:21 a.m.•5 views

CVE-2026-41530

Exploits0References3Affected Software2

Cvelist•added 2026/05/12 5:21 a.m.•34 views

CVE-2026-41530

4.6CVSS0.00018EPSS

CVE•added 2026/05/12 5:21 a.m.•12 views

CVE-2026-41530

The CVE pertains to the automatic folder creation feature in Lhaz and Lhaz+ by Chitora soft, revealing a path traversal flaw. When this feature is enabled and a user extracts an archive containing a crafted file name, files may be extracted to an unintended directory. The available sources descri...

Positive Technologies•added 2026/05/12 12:0 a.m.•7 views

PT-2026-39936

CNNVD•added 2026/05/12 12:0 a.m.•6 views

Chitora Lhaz 路径遍历漏洞

Chitora Lhaz is a Windows compression tool developed by Chitora Company in Japan. It supports the creation of files in various compression formats and the decompression of those files. Chitora Lhaz has a path traversal vulnerability. This vulnerability stems from an issue with the automatic folde...

Japan Vulnerability Notes•added 2026/05/11 9:20 a.m.•8 views

Lhaz and Lhaz+ vulnerable to path traversal

Overview Lhaz and Lhaz+ provided by Chitora soft contain the following vulnerability. Path traversal CWE-22 - CVE-2026-41530 RyotaK of GMO Flatt Security Inc. and Rei Yano reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...

EUVD•added 2025/10/07 12:30 a.m.•1 views

Exploits0References5

EUVD-2017-11429

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-4106

Malware in sbrugna...

5.1CVSS6.4AI score0.01993EPSS

Exploits1References10

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-11431

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-11432

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2017-11430

Malware in sbrugna...

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2007-4411

Malware in sbrugna...

6.8CVSS6.4AI score0.07714EPSS

Exploits1References8

CNVD•added 2017/07/26 12:0 a.m.•1 views

Lhaz+ Untrustworthy Search Path Vulnerability Vulnerability

Lhaz+ is a compression/decompression tool. An untrusted search path vulnerability exists in the Self-extracting archive file created in Lhaz+ 2.4.0 and earlier versions. An attacker can exploit this vulnerability to gain privileges with a malicious DLL in the directory...

9.3CVSS7.8AI score0.00136EPSS

CNVD•added 2017/07/26 12:0 a.m.•2 views

Lhaz Installer Untrusted Search Path Vulnerability

Lhaz is a compression/decompression tool.Installer is one of the installers. An untrusted search path vulnerability exists in the installer in Lhaz 2.4.0 and earlier versions. An attacker can exploit this vulnerability to gain privileges with a malicious DLL in a directory...

9.3CVSS7.8AI score0.00136EPSS

CNVD•added 2017/07/19 12:0 a.m.•2 views

Lhaz Self-extracting archive file untrusted search path vulnerability

Lhaz is a compression/decompression tool developed by a Japanese company. An untrusted search path vulnerability exists in the Self-extracting archive file created by Lhaz 2.4.0 and earlier versions. The vulnerability can be exploited to gain privileges through a malicious DLL in the directory...

9.3CVSS7.8AI score0.00136EPSS

OSV•added 2017/07/17 1:18 p.m.•0 views

CVE-2017-2247

Untrusted search path vulnerability in Self-extracting archive files created by Lhaz version 2.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS5.8AI score