Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

RedhatCVE
RedhatCVEadded 2026/06/05 7:13 p.m.8 views

CVE-2026-48866

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Rocketgenius Inc. Gravity Forms allows Path Traversal. This issue affects Gravity Forms: from n/a through 2.10.0.1...

9.6CVSS5.4AI score0.0035EPSS
Exploits2References1
OSV
OSVadded 2025/02/06 1:15 a.m.1 views

CVE-2025-0799

IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow an authenticated user to write to an arbitrary file on the system during bar configuration deployment due to improper pathname limitations on restricted directories...

6.5CVSS5.9AI score
Exploits0References1
BDU FSTEC
BDU FSTECadded 2022/01/17 12:0 a.m.2 views

The vulnerability of the Node.js module for processing tar archives using Node-tar lies in the shortcomings of the pathname limitation, which allows attackers to compromise the integrity of the data and cause service failures.

The vulnerability of the Node.js module for processing tar archives using Node-tar is related to incorrect filtering of the '/' character sequence. Exploiting this vulnerability can allow an attacker to compromise data integrity and cause service failures...

8.1CVSS6.7AI score0.15014EPSS
Exploits1References8Affected Software4
BDU FSTEC
BDU FSTECadded 2021/10/27 12:0 a.m.2 views

The vulnerability of the `squashfs_opendir` function in the `unsquash-1.c` component of the Squashfs-Tools tooling suite relates to name space limitations on directories. This vulnerability allows an attacker to compromise data integrity and cause service failures.

The vulnerability of the squashfs-opendir function in the unsquash-1.c component of the Squashfs-Tools tooling suite relates to deficiencies in pathname limitation. Exploiting this vulnerability could allow an attacker to compromise data integrity and cause service failures...

8.1CVSS6.5AI score0.025EPSS
Exploits1References15Affected Software7
OSV
OSVadded 2021/08/13 12:15 p.m.1 views

CVE-2021-37348

Nagios XI before version 5.8.5 is vulnerable to local file inclusion through improper limitation of a pathname in index.php...

7.5CVSS5.8AI score0.02782EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2020/01/23 12:0 a.m.2 views

The vulnerability of the Linux operating system’s kernel-based SMB client allows a hacker to manipulate files in the client’s directory.

The vulnerability of the Linux operating system’s kernel-based SMB client exists due to an incorrect pathname limitation for the restricted access directory. Exploiting this vulnerability allows a malicious actor to remotely manipulate files within the client’s directory...

10CVSS7.2AI score0.05123EPSS
Exploits0References22Affected Software4
Rows per page
Query Builder