Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

769 matches found

RedhatCVE
RedhatCVEadded 2026/06/10 9:3 p.m.6 views

CVE-2026-47287

Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...

6.5CVSS5.5AI score0.00509EPSS
Exploits0References1
NVD
NVDadded 2026/06/09 5:17 p.m.10 views

CVE-2026-47287

Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...

6.5CVSS0.00509EPSS
Exploits0References1
CVE
CVEadded 2026/06/09 5:4 p.m.19 views

CVE-2026-47287

CVE-2026-47287 affects Visual Studio Code. The provided documents describe a relative path traversal vulnerability that could allow tampering over a network. Per CVSS data, the attack vector is NETWORK with no privileges required but user interaction is required, and the impact includes high inte...

6.5CVSS5.5AI score0.00509EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2026/06/09 7:42 a.m.6 views

EUVD-2026-35374

The Apache Airflow Samba provider's GCSToSambaOperator joined GCS object names to the SMB destination path without a containment check, so an object named with ../ segments resolved a write path outside the configured destinationpath. An attacker able to write objects into the source GCS bucket —...

6.5CVSS5.6AI score0.00726EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2026/06/09 12:0 a.m.8 views

PT-2026-48022

Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering over a network...

6.5CVSS5.5AI score0.00509EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/06/05 7:51 p.m.4 views

CVE-2025-24819

Nokia MantaRay NM is vulnerable to a Relative Path Traversal vulnerability due to improper validation of input parameter on the file system in Software Manager application...

5.7CVSS5.5AI score0.00211EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:41 p.m.5 views

CVE-2025-41268

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Administration WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to delete arbitrary files on the Host machines...

9.1CVSS5.7AI score0.00437EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:41 p.m.5 views

CVE-2025-41271

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to read arbitrary files from the device...

8.7CVSS5.7AI score0.00434EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:41 p.m.6 views

CVE-2025-41280

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal Zip Slip in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute code on the RX Host when a MySQL connector is configured and file compression is enabled...

7.8CVSS5.8AI score0.00146EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:26 p.m.5 views

CVE-2026-39814

A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.2, FortiWeb 7.6.0 through 7.6.6, FortiWeb 7.4.1 through 7.4.12, FortiWeb 7.2.7 through 7.2.12, FortiWeb 7.0.10 through 7.0.12 may allow attacker to execute unauthorized code or commands via...

6.7CVSS5.7AI score0.00139EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:19 p.m.5 views

CVE-2026-10073

DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to download arbitrary system files...

8.7CVSS5.6AI score0.00353EPSS
Exploits0References1
NVD
NVDadded 2026/05/29 2:16 p.m.12 views

CVE-2026-10074

DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download arbitrary system files...

6.9CVSS0.00347EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/29 12:45 p.m.26 views

CVE-2026-10074 Interinfo|DreamMaker - Arbitrary File Read

DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download arbitrary system files...

6.9CVSS0.00347EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/05/29 12:39 p.m.27 views

CVE-2026-10073 Interinfo|DreamMaker - Arbitrary File Read

DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to download arbitrary system files...

8.7CVSS0.00353EPSS
Exploits0References2
NVD
NVDadded 2026/05/29 12:16 p.m.10 views

CVE-2025-41271

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to read arbitrary files from the device...

8.7CVSS0.00434EPSS
Exploits0References1
NVD
NVDadded 2026/05/29 12:16 p.m.10 views

CVE-2025-41268

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Administration WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to delete arbitrary files on the Host machines...

9.1CVSS0.00437EPSS
Exploits0References1
CVE
CVEadded 2026/05/29 10:59 a.m.12 views

CVE-2025-41280

CVE-2025-41280 affects Waterfall WF-500 RX Host (version 7.9.1.0 R2502171040). The vulnerability is a CWE-23 Relative Path Traversal (Zip Slip) in the MySQL connector scenario when file compression is enabled, allowing a user with access to the TX Host to execute code on the RX Host. Documented i...

7.8CVSS6AI score0.00146EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2026/05/29 10:59 a.m.34 views

CVE-2025-41280

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal Zip Slip in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute code on the RX Host when a MySQL connector is configured and file compression is enabled...

7.5CVSS0.00146EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/29 10:59 a.m.10 views

CVE-2025-41280

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal Zip Slip in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute code on the RX Host when a MySQL connector is configured and file compression is enabled...

7.5CVSS6AI score0.00146EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/05/29 10:59 a.m.11 views

CVE-2025-41280

Nozomi Networks Labs identified a CWE-23: Relative Path Traversal Zip Slip in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute code on the RX Host when a MySQL connector is configured and file compression is enabled...

7.5CVSS6AI score0.00146EPSS
Exploits0References1
Rows per page
Query Builder