ROS-20260608-73-0015

The vulnerability of the .NET Core software platform is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability allows a remote attacker to write arbitrary files...

USN-8367-1: tar-fs vulnerabilities

It was discovered that tar-fs did not properly limit paths when extracting crafted tar files. An attacker could possibly use this issue to write or overwrite files outside the intended extraction directory. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. CVE-2024-12905 It was...

CVE-2026-43888

Outline is a service that allows for collaborative documentation. Prior to 1.7.0, ZipHelper.extract computes the extraction path for each entry by passing a full filesystem path through trimFileAndExt, a filename helper that calls path.basename on its input when truncating. When a zip entry's...

GHSA-775H-3XRC-C228 Parse Server has a rate limit bypass via batch request endpoint

Impact Parse Server's rate limiting middleware is applied at the Express middleware layer, but the batch request endpoint /batch processes sub-requests internally by routing them directly through the Promise router, bypassing Express middleware including rate limiting. An attacker can bundle...

CVE-2026-21878 BACnet Stack Improperly Limits Pathnames to a Restricted Directory

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.5.0.rc3, a vulnerability has been discovered in BACnet Stack's file writing functionality where there is no validation of user-provided file paths, allowing attackers to write files to arbitrary...

MiracleLinux 4 : quagga-0.99.15-5.AXS4.2 (AXSA:2011-136:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2011-136:01 advisory. Quagga is a free software that manages TCP/IP based routing protocol. It takes multi-server and multi- thread approach to resolve the current...

EUVD-2025-25367

Malicious code in bioql PyPI...

ROS-20250825-05

A vulnerability in the Ruby Sinatra web application development framework is related to a flaw in limiting the name of the of the directory path. Exploitation of the vulnerability allows an attacker acting remotely to gain access to sensitive data...

CVE-2025-38652 f2fs: fix to avoid out-of-boundary access in devs.path

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-boundary access in devs.path - touch /mnt/f2fs/012345678901234567890123456789012345678901234567890123 - truncate -s $102410241024 \ /mnt/f2fs/012345678901234567890123456789012345678901234567890123 - touc...

The vulnerability of the Certificates and Keys module of the Device Admin App for the ctrlX OS operating system allows a perpetrator to write arbitrary files.

The vulnerability of the Certificates and Keys module in the Device Admin app of the ctrlX OS operating system is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability allows a malicious actor to write arbitrary files by sending specially crafted HTTP...

SUSE CVE-2025-1915

Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on Windows prior to 134.0.6998.35 allowed an attacker who convinced a user to install a malicious extension to bypass file access restrictions via a crafted Chrome Extension. Chromium security severity: Mediu...

The vulnerability of the File.OpenText() function in the WhatsUp Gold network infrastructure monitoring system allows a intruder to gain unauthorized access to protected information.

The vulnerability of the File.OpenText function in the WhatsUp Gold network infrastructure monitoring system is related to an incorrect limitation on the path name to the restricted directory when processing the xmlName parameter. Exploiting this vulnerability can allow a malicious actor to gain...

The vulnerability of the implementation of the Message Queuing Telemetry Transport (MQTT) protocol in the MXview One industrial network management platform allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Message Queuing Telemetry Transport MQTT protocol implementation of the MXview One industrial network management platform is related to an incorrect limit on the path name to the directory. Exploiting this vulnerability could allow a malicious actor, operating remotely, t...

The vulnerability of the Dell Inventory Collector software’s equipment inventory system lies in the incorrect limitation of the path to the restricted-access catalog. This allows a perpetrator to execute arbitrary code.

The vulnerability of Dell Inventory Collector’s software for inventory management is related to incorrect restrictions on the path to the restricted-access catalog. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the GeoWebCache ByteStreamController component in the software for administrative and publishing of geospatial data on the OSGeo GeoServer server allows a perpetrator to circumvent existing security restrictions.

The vulnerability of the GeoWebCache ByteStreamController component in the software for administrative and publishing of geospatial data on the OSGeo GeoServer server is related to an incorrect limitation on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious...

The vulnerability of the .NET Core software component “Document Approval Service” allows an attacker to gain read and write access to files.

The vulnerability of the .NET Core software component “Document Approval Service” is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability may allow a malicious actor to gain read and write access to files...

The vulnerability of the ExportConfigs method of the Network Configuration Manager (NCM) software allows a perpetrator to execute arbitrary code.

The vulnerability of the ExportConfigs method in the Network Configuration Manager NCM software is related to an incorrect limitation on the path name to the restricted access directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the SYSTEM context remotel...

The vulnerability in the Roxy-WI web interface for managing Haproxy, Nginx, Apache, and Keepalived allows a attacker to gain unauthorized access to protected information.

The vulnerability in the Roxy-WI web interface for managing Haproxy, Nginx, Apache, and Keepalived is related to an incorrect limitation on the path to the restricted directory. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected information...

The vulnerability of the ColdFusion software platform arises from an incorrect limitation on the path to the restricted access catalog, allowing attackers to execute arbitrary code.

The vulnerability of the ColdFusion software platform exists due to an incorrect limitation on the path name to the restricted access catalog. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

SUSE CVE-2010-1675

bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service session reset via a malformed ASPATHLIMIT path attribute...