Lucene search
K

8700 matches found

GithubExploit
GithubExploit
added 2026/06/19 5:29 a.m.85 views

imagemagick-gs-delegate-hijack-poc

ImageMagick Ghostscript Delegate Search Path PoC This reposit...

5.8AI score
Exploits0
Snyk
Snyk
added 2026/06/18 8:41 p.m.9 views

Untrusted Search Path

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Untrusted Search Path via the PATH environment variable influencing the selection of the trash executable during maintenance tasks. An attacker can execute unintended local executables by...

7.2CVSS5.9AI score0.00119EPSS
Exploits0References2
NVD
NVD
added 2026/06/18 8:16 p.m.12 views

CVE-2026-25865

Punto Switcher through 4.5.0.583 contains an unquoted search path element vulnerability that allows local attackers to execute arbitrary code by exploiting the application's call to WinExec without a fully qualified path for RunDll32.exe when invoking shell32.dll ControlRunDLL input.dll. Attacker...

8.5CVSS0.00149EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 7:39 p.m.10 views

EUVD-2026-37940

Punto Switcher through 4.5.0.583 contains an unquoted search path element vulnerability that allows local attackers to execute arbitrary code by exploiting the application's call to WinExec without a fully qualified path for RunDll32.exe when invoking shell32.dll ControlRunDLL input.dll. Attacker...

8.5CVSS6.3AI score0.00149EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/18 7:39 p.m.7 views

CVE-2026-25865

Punto Switcher through 4.5.0.583 contains an unquoted search path element vulnerability that allows local attackers to execute arbitrary code by exploiting the application's call to WinExec without a fully qualified path for RunDll32.exe when invoking shell32.dll ControlRunDLL input.dll. Attacker...

8.5CVSS6.3AI score0.00149EPSS
Exploits0References4
CVE
CVE
added 2026/06/18 7:39 p.m.19 views

CVE-2026-25865

CVE-2026-25865 affects Punto Switcher 4.5.0.583. The vulnerability is an unquoted search path element invoked via WinExec when calling RunDll32.exe for shell32.dll Control_RunDLL input.dll, enabling local arbitrary code execution if an attacker places a malicious executable earlier in the search ...

8.5CVSS6.3AI score0.00149EPSS
Exploits0References3
Snyk
Snyk
added 2026/06/18 1:4 p.m.10 views

Untrusted Search Path

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Untrusted Search Path via the CLOUDSDKPYTHON environment variable in the .env file during the Gmail setup process. An attacker can cause unintended Python runtime execution by manipulatin...

7.1CVSS6AI score0.00133EPSS
Exploits0References2
NVD
NVD
added 2026/06/16 5:16 p.m.10 views

CVE-2024-22451

Dell Peripheral Manager, versions from 1.5.1 to 1.7.2, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious executable, leading to arbitrary code execution...

6.7CVSS0.00099EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 3:16 p.m.28 views

CVE-2024-22451

Dell Peripheral Manager, versions from 1.5.1 to 1.7.2, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious executable, leading to arbitrary code execution...

6.7CVSS0.00099EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/16 3:16 p.m.7 views

EUVD-2024-55621

Dell Peripheral Manager, versions from 1.5.1 to 1.7.2, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious executable, leading to arbitrary code execution...

6.7CVSS5.7AI score0.00099EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 3:16 p.m.15 views

CVE-2024-22451

Dell Peripheral Manager (versions 1.5.1–1.7.2) contains an uncontrolled search path element vulnerability that could allow arbitrary code execution via preloading a malicious executable. Affected component is the Dell Peripheral Manager executable path; root cause is an uncontrolled search path e...

6.7CVSS5.8AI score0.00099EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/06/16 2:10 p.m.13 views

CVE-2024-22447

CVE-2024-22447 affects Dell Peripheral Manager prior to 1.7.3. The vulnerability is an uncontrolled search path element that could allow preloading a malicious DLL to achieve arbitrary code execution. Affected product: Dell Peripheral Manager. Root cause: uncontrolled search path element in the a...

7.8CVSS5.7AI score0.00098EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/06/16 2:10 p.m.35 views

CVE-2024-22447

Dell Peripheral Manager, versions prior to 1.7.3, contain an uncontrolled search path element vulnerability. An attacker could potentially exploit this vulnerability through preloading malicious dll., leading to arbitrary code execution...

6.7CVSS0.00098EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.13 views

PT-2026-49719

Name of the Vulnerable Software and Affected Versions Dell Peripheral Manager versions 1.5.1 through 1.7.2 Description An uncontrolled search path element issue allows an attacker to potentially execute arbitrary code by preloading a malicious executable. Recommendations At the moment, there is n...

6.7CVSS6.1AI score0.00099EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/11 8:33 p.m.15 views

EUVD-2026-34901

AWS Advanced Go Wrapper has Privilege Escalation in Aurora PostgreSQL instance...

8.6CVSS5.4AI score0.00305EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/11 2:59 p.m.11 views

CVE-2026-8637

A potential uncontrolled search path vulnerability was reported in the LanSchool Classic client application that could allow a local authenticated user to execute arbitrary code with elevated privileges...

8.5CVSS6AI score0.0013EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:2 p.m.14 views

CVE-2026-48565

Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privileges locally...

7.8CVSS7.1AI score0.00432EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:1 p.m.9 views

CVE-2026-47937

Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

8.2CVSS6.1AI score0.00151EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/10 9:1 p.m.8 views

CVE-2026-47648

Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally...

7CVSS5.4AI score0.00218EPSS
Exploits0References1
NVD
NVD
added 2026/06/10 3:16 p.m.16 views

CVE-2026-8637

A potential uncontrolled search path vulnerability was reported in the LanSchool Classic client application that could allow a local authenticated user to execute arbitrary code with elevated privileges...

8.5CVSS0.0013EPSS
Exploits0References1
Rows per page
Query Builder