Lucene search
K

1065 matches found

CNNVD
CNNVD
added 2026/04/02 12:0 a.m.9 views

Copier 路径遍历漏洞

Copier is an open-source library developed by Copier for rendering project templates. Versions of Copier prior to 9.14.1 contained a path traversal vulnerability. This vulnerability stemmed from the externaldata function, which allowed templates to load YAML files using path-based operations...

5.5CVSS5.8AI score0.00287EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/01 9:30 p.m.4 views

EUVD-2026-18005

ChangeDetection.io versions prior to 0.54.7 contain a protection bypass vulnerability in the SafeXPath3Parser implementation that allows attackers to read arbitrary local files by using unblocked XPath 3.0/3.1 functions such as json-doc and similar file-access primitives. Attackers can exploit th...

7.1CVSS6AI score0.00282EPSS
Exploits0References4
Snyk
Snyk
added 2026/04/01 8:29 p.m.6 views

Incomplete List of Disallowed Inputs

Overview changedetection.io is a Website change detection and monitoring service Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs via the SafeXPath3Parser implementation. An attacker can access sensitive files from the local filesystem by leveraging unblock...

7.1CVSS5.8AI score0.00282EPSS
Exploits0References2
OSV
OSV
added 2026/03/31 11:54 p.m.3 views

GHSA-V8WV-JG3Q-QWPQ OpenClaw's message tool media parameter bypasses tool policy filesystem isolation

Summary The message tool accepted mediaUrl and fileUrl aliases without applying the same sandbox localRoots validation as the canonical media path handling. Impact A caller constrained to sandbox media roots could read arbitrary local files by routing them through the alias parameters. Affected...

7.1CVSS6AI score0.00555EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a sandbox bypass vulnerability that can be exploited by an attacker to read arbitrary local files using mediaUrl and fileUrl alias parameters that bypass localRoots validation...

8.6CVSS5.9AI score0.00555EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/30 8:27 p.m.2 views

XML External Entity (XXE) Injection

Overview getgrav/grav is a Modern, Crazy Fast, Ridiculously Easy and Amazingly Powerful Flat-File CMS. Affected versions of this package are vulnerable to XML External Entity XXE Injection via the SVG file upload functionality in the admin panel and File Manager plugin. An attacker can access...

7.6CVSS5.9AI score0.00339EPSS
Exploits0References2
OSV
OSV
added 2026/03/26 7:7 p.m.3 views

GHSA-H3X4-HC5V-V2GM OpenClaw: Windows media loaders accepted remote-host file URLs before local path validation

Summary Windows local-media handling accepted remote-host file URLs and UNC-style paths before local-path validation, so network-hosted file targets could be treated as local content. Affected Packages / Versions - Package: openclaw npm - Affected: = 2026.3.22 - Latest released tag checked:...

5.3CVSS5.8AI score0.0026EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/03/26 5:15 p.m.23 views

CVE-2026-33486 Roadiz has Server-Side Request Forgery (SSRF) in roadiz/documents

Roadiz is a polymorphic content management system based on a node system that can handle many types of services. A vulnerability in roadiz/documents prior to versions 2.7.9, 2.6.28, 2.5.44, and 2.3.42 allows an authenticated attacker to read any file on the server's local file system that the web...

6.8CVSS0.00383EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:7 p.m.8 views

CVE-2026-28809

XML External Entity XXE vulnerability in esaml and its forks allows an attacker to cause the system to read local files and incorporate their contents into processed SAML documents, and potentially perform SSRF via crafted SAML messages. esaml parses attacker-controlled SAML messages using...

6.3CVSS5.8AI score0.00281EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 6:16 p.m.3 views

CVE-2026-33660

n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.26, an authenticated user with permission to create or modify workflows could use the Merge node's "Combine by SQL" mode to read local files on the n8n host and achieve remote code execution. The AlaSQ...

9.4CVSS0.00951EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 5:9 p.m.2 views

CVE-2026-33660 n8n Has Multiple Remote Code Execution Vulnerabilities in Merge Node AlaSQL SQL Mode

n8n is an open source workflow automation platform. Prior to versions 2.14.1, 2.13.3, and 1.123.26, an authenticated user with permission to create or modify workflows could use the Merge node's "Combine by SQL" mode to read local files on the n8n host and achieve remote code execution. The AlaSQ...

9.4CVSS6.1AI score0.00951EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/23 10:45 p.m.3 views

CVE-2026-33046

Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In versions prior to 3.3.12, due to vulnerabilities in TeXLive and obscure LaTeX syntax that allowed circumventing Indico's LaTeX sanitizer, it is possible to use specially-crafted LaT...

7.7CVSS5.9AI score0.00782EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/03/23 10:45 p.m.23 views

CVE-2026-33046 Indico discloses local files resulting in Remote Code Execution through LaTeX injection

Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In versions prior to 3.3.12, due to vulnerabilities in TeXLive and obscure LaTeX syntax that allowed circumventing Indico's LaTeX sanitizer, it is possible to use specially-crafted LaT...

7.7CVSS0.00782EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/03/23 10:45 p.m.2 views

CVE-2026-33046 Indico discloses local files resulting in Remote Code Execution through LaTeX injection

Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In versions prior to 3.3.12, due to vulnerabilities in TeXLive and obscure LaTeX syntax that allowed circumventing Indico's LaTeX sanitizer, it is possible to use specially-crafted LaT...

7.7CVSS5.9AI score0.00782EPSS
Exploits0References6
OSV
OSV
added 2026/03/23 10:45 p.m.2 views

CVE-2026-33046 Indico discloses local files resulting in Remote Code Execution through LaTeX injection

Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In versions prior to 3.3.12, due to vulnerabilities in TeXLive and obscure LaTeX syntax that allowed circumventing Indico's LaTeX sanitizer, it is possible to use specially-crafted LaT...

7.7CVSS6AI score0.00782EPSS
Exploits0References8
EUVD
EUVD
added 2026/03/23 12:30 p.m.3 views

EUVD-2026-14396

XML External Entity XXE vulnerability in esaml and its forks allows an attacker to cause the system to read local files and incorporate their contents into processed SAML documents, and potentially perform SSRF via crafted SAML messages. esaml parses attacker-controlled SAML messages using...

6.3CVSS5.8AI score0.00281EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/23 10:9 a.m.29 views

CVE-2026-28809 XXE in esaml SAML library allows local file read and potential SSRF

XML External Entity XXE vulnerability in esaml and its forks allows an attacker to cause the system to read local files and incorporate their contents into processed SAML documents, and potentially perform SSRF via crafted SAML messages. esaml parses attacker-controlled SAML messages using...

6.3CVSS0.00281EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.6 views

Indico 操作系统命令注入漏洞

Indico is an open-source event management system with rich functionality. Versions of Indico prior to 3.3.12 contained a vulnerability related to operating system command injection. This vulnerability stemmed from the LaTeXLive vulnerability and ambiguous LaTeX syntax that could be exploited by...

8.8CVSS6AI score0.00782EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.6 views

PT-2026-27283

Name of the Vulnerable Software and Affected Versions Roadiz versions prior to 2.7.9 Roadiz versions prior to 2.6.28 Roadiz versions prior to 2.5.44 Roadiz versions prior to 2.3.42 Description Roadiz is a polymorphic content management system based on a node system. A flaw in the...

6.8CVSS5.8AI score0.00383EPSS
Exploits1References6
CVE
CVE
added 2026/03/20 1:58 a.m.21 views

CVE-2026-32812

Admidio CVE-2026-32812 affects versions 5.0.0–5.0.6 where the SSO Metadata API endpoint at modules/sso/fetch_metadata.php reads a user-supplied URL and passes it to file_get_contents() after only PHP FILTER_VALIDATE_URL validation. This allows an authenticated administrator to cause Local File Re...

6.8CVSS5.8AI score0.00428EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder