Lucene search
K

454 matches found

Veracode
Veracode
added 2026/05/14 5:10 p.m.17 views

Directory Traversal

github.com/gtsteffaniak/filebrowser is vulnerable to Directory Traversal. The vulnerability is due to improper sanitization of attacker-controlled path input before path validation, which allows an attacker to use traversal sequences to delete arbitrary files outside the intended shared directory...

9.1CVSS5.9AI score0.00523EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/05/11 5:44 a.m.4 views

BIT-GOLANG-2026-39817 Invoking "go tool pack" does not sanitize output paths in cmd/go

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS5.9AI score0.0017EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/07 7:41 p.m.43 views

CVE-2026-39817 Invoking "go tool pack" does not sanitize output paths in cmd/go

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

0.0017EPSS
Exploits0References4
OSV
OSV
added 2026/05/07 7:21 p.m.15 views

GO-2026-4979 Invoking "go tool pack" does not sanitize output paths in cmd/go

The "go tool pack" subcommand usually used only by the compiler as an internal tool with known-good inputs does not sanitize output filenames. Extracting a malicious archive file with the "pack" subcommand can write files to arbitrary locations on the filesystem...

5.9CVSS5.9AI score0.0017EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/07 2:18 a.m.12 views

SUSE CVE-2026-43112

In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifssanitizeprepath When cifssanitizeprepath is called with an empty string or a string containing only delimiters e.g., "/", the current logic attempts to check cursor2 - 1 before cursor2...

5.5CVSS5.8AI score0.00339EPSS
Exploits0References15
NVD
NVD
added 2026/05/06 10:16 a.m.17 views

CVE-2026-43112

In the Linux kernel, the following vulnerability has been resolved: fs/smb/client: fix out-of-bounds read in cifssanitizeprepath When cifssanitizeprepath is called with an empty string or a string containing only delimiters e.g., "/", the current logic attempts to check cursor2 - 1 before cursor2...

8.8CVSS0.00339EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.11 views

RHCOS 3 : OpenShift Container Platform 3.4 (RHSA-2018:1237)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1237 advisory. - source-to-image: Improper path sanitization in ExtractTarStreamFromTarReader in tar/tar.go CVE-2018-1102 Note that Nessus has not tested fo...

8.8CVSS7.3AI score0.02418EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.6 views

RHCOS 3 : OpenShift Container Platform 3.7 (RHSA-2018:1231)

The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1231 advisory. - source-to-image: Improper path sanitization in ExtractTarStreamFromTarReader in tar/tar.go CVE-2018-1102 Note that Nessus has not tested fo...

8.8CVSS7.3AI score0.02418EPSS
Exploits0References16
Vulnrichment
Vulnrichment
added 2026/04/21 11:58 p.m.4 views

CVE-2026-41144 F´ (F Prime) has Integer Overflow in FileUplink

F´ F Prime is a framework that enables development and deployment of spaceflight and other embedded software applications. Prior to version 4.2.0, the bounds check byteOffset + dataSize fileSize uses U32 addition that wraps around on overflow. An attacker-crafted DataPacket with...

6.7AI score0.00428EPSS
Exploits0References2
CVE
CVE
added 2026/04/21 11:58 p.m.19 views

CVE-2026-41144

CVE-2026-41144 affects F Prime prior to 4.2.0. The vulnerability arises from an integer overflow in a bounds check: adding byteOffset and dataSize uses 32-bit unsigned addition that can wrap around. With a crafted DataPacket (e.g., byteOffset=0xFFFFFF9C, dataSize=100), the check is bypassed and a...

9.8CVSS6.7AI score0.00428EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.3 views

PT-2026-34226

Name of the Vulnerable Software and Affected Versions F Prime versions prior to 4.2.0 Description An integer overflow occurs during a bounds check where the addition of byteOffset and dataSize wraps around on overflow. This allows a specially crafted DataPacket to bypass the check, enabling a fil...

9.8CVSS6.6AI score0.00428EPSS
Exploits0References6
Snyk
Snyk
added 2026/04/10 9:10 p.m.4 views

Missing Write Protection for Parametric Data Values

Overview Affected versions of this package are vulnerable to Missing Write Protection for Parametric Data Values through improper sanitization of the destination path in the rename process. An attacker can overwrite files outside the intended root directory by supplying crafted destination paths...

7.7CVSS8.4AI score0.00318EPSS
Exploits1References2
OSV
OSV
added 2026/04/10 8:0 p.m.3 views

GHSA-2943-CRP8-38XX goshs is Missing Write Protection for Parametric Data Values

Summary The SFTP command rename sanitizes only the source path and not the destination, so it is possible to write outside of the root directory of the SFTP. Details Here is the issue: go // helper.go:155-215 func cmdFileroot string, r sftp.Request, ip string, sftpServer SFTPServer error fullPath...

7.7CVSS5.8AI score0.00318EPSS
Exploits1References5
NVD
NVD
added 2026/04/08 9:16 p.m.5 views

CVE-2026-39844

NiceGUI is a Python-based UI framework. Prior to 3.10.0, Since PurePosixPath only recognizes forward slashes / as path separators, an attacker can bypass this sanitization on Windows by using backslashes \ in the upload filename. Applications that construct file paths using file.name a pattern...

7.5CVSS0.00371EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/07 11:25 p.m.5 views

SUSE CVE-2026-35392

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, PUT upload in httpserver/updown.go has no path sanitization. This vulnerability is fixed in 2.0.0-beta.3...

9.8CVSS5.8AI score0.00683EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/07 11:1 p.m.4 views

CVE-2026-35392

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, PUT upload in httpserver/updown.go has no path sanitization. This vulnerability is fixed in 2.0.0-beta.3...

9.8CVSS7.2AI score0.00683EPSS
Exploits1References1
NVD
NVD
added 2026/04/06 9:16 p.m.4 views

CVE-2026-35392

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, PUT upload in httpserver/updown.go has no path sanitization. This vulnerability is fixed in 2.0.0-beta.3...

9.8CVSS0.00683EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/04/06 8:48 p.m.23 views

CVE-2026-35392

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, PUT upload in httpserver/updown.go has no path sanitization. This vulnerability is fixed in 2.0.0-beta.3...

9.8CVSS7.2AI score0.00683EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/04/06 8:48 p.m.5 views

EUVD-2026-19488

goshs is a SimpleHTTPServer written in Go. Prior to 2.0.0-beta.3, PUT upload in httpserver/updown.go has no path sanitization. This vulnerability is fixed in 2.0.0-beta.3...

9.8CVSS7.2AI score0.00683EPSS
Exploits1References1
CVE
CVE
added 2026/04/06 8:48 p.m.14 views

CVE-2026-35392

CVE-2026-35392 affects goshs, a Go-based SimpleHTTPServer. Prior to version 2.0.0-beta.3, PUT uploads in httpserver/updown.go lacked path sanitization, enabling an improper pathname handling condition (path traversal) as described in the CVE. The issue is fixed in 2.0.0-beta.3. Connected security...

9.8CVSS7.2AI score0.00683EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder