Lucene search
K

218 matches found

CVE
CVE
added 2026/03/09 8:50 p.m.16 views

CVE-2026-30240

Budibase PWA ZIP upload path traversal (CVE-2026-30240) affects Budibase 3.31.5 and earlier. Affected component: PWA ZIP processing endpoint at POST /api/pwa/process-zip. Root cause: unsanitized usage of path.join() with user-controlled input from icons.json inside the uploaded ZIP allowing an au...

9.6CVSS5.9AI score0.00267EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/03/09 8:50 p.m.15 views

CVE-2026-30240 Budibase PWA ZIP Upload Path Traversal Allows Reading Arbitrary Server Files Including All Environment Secrets

Budibase is a low code platform for creating internal tools, workflows, and admin panels. In 3.31.5 and earlier, a path traversal vulnerability in the PWA Progressive Web App ZIP processing endpoint POST /api/pwa/process-zip allows an authenticated user with builder privileges to read arbitrary...

9.6CVSS5.9AI score0.00267EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.14 views

WindMill 路径遍历漏洞

WindMill is a free open-source tool developed by Lukasavicus’ individual developer. It is used to control the execution of tasks in Python. Versions of WindMill prior to 1.603.3 contained a path traversal vulnerability. This vulnerability stemmed from the filename parameter in the getlogfile...

7.5CVSS7.5AI score0.02584EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/05 9:13 p.m.4 views

Directory Traversal

Overview @fonoster/voice is a Voice Server for Fonoster Affected versions of this package are vulnerable to Directory Traversal via the serveFiles function. An attacker can access arbitrary files on the server by sending crafted requests containing directory traversal sequences to the /sounds/:fi...

6.9CVSS6.2AI score0.02362EPSS
Exploits1References2
OSV
OSV
added 2026/03/03 8:43 a.m.4 views

BIT-KIBANA-2026-26938 Improper Neutralization of Special Elements Used in a Template Engine in Kibana Workflows Leading to Server-Side Request Forgery (SSRF)

Improper Neutralization of Special Elements Used in a Template Engine CWE-1336 exists in Workflows in Kibana which could allow an attacker to read arbitrary files from the Kibana server filesystem, and perform Server-Side Request Forgery SSRF via Code Injection CAPEC-242. This requires an...

8.6CVSS6.1AI score0.00254EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/19 7:23 p.m.28 views

CVE-2026-26202 Penpot has Arbitrary File Read via create-font-variant RPC endpoint

Penpot is an open-source design tool for design and code collaboration. Prior to version 2.13.2, an authenticated user can read arbitrary files from the server by supplying a local file path e.g. /etc/passwd as a font data chunk in the create-font-variant RPC endpoint, resulting in the file...

7.5CVSS0.00437EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/02/18 7:25 a.m.6 views

CVE-2026-2419

The WP-DownloadManager plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.69 via the 'downloadpath' configuration parameter. This is due to insufficient validation of the download path setting, which allows directory traversal sequences to bypass the...

2.7CVSS5.7AI score0.00718EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/13 12:0 a.m.6 views

Tandoor Recipes 安全漏洞

Tandoor Recipes is an open-source application designed for managing recipes, planning meals, creating shopping lists, and more. Versions of Tandoor Recipes prior to 2.5.1 contained security vulnerabilities. These vulnerabilities stemmed from the lack of input validation for the filepath parameter...

4.9CVSS5.8AI score0.0042EPSS
Exploits2References3
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.8 views

Outline 路径遍历漏洞

Outline is an open-source knowledge base developed by Outline. Versions prior to Outline 1.4.0 contained a path traversal vulnerability. This vulnerability stemmed from insufficient validation of the attachments.key value during the JSON import process, which could allow attackers to read arbitra...

5.5CVSS5.9AI score0.00393EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.4 views

GeoNetwork 代码问题漏洞

GeoNetwork is GeoNetwork open source a catalog application . It is used to manage spatially referenced resources. A code issue vulnerability exists in GeoNetwork 4.2.0 and earlier versions, which stems from an XML external entity vulnerability in PDF rendering that could lead to reading arbitrary...

8.7CVSS6AI score0.00463EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/01/08 12:0 a.m.6 views

n8n 输入验证错误漏洞

n8n is a scalable workflow automation tool from the n8n open source. An input validation error vulnerability exists in versions prior to n8n 1.121.0, which stems from an attacker being able to access underlying server files by executing a form-based workflow, potentially leading to the disclosure...

10CVSS6.5AI score0.71647EPSS
Exploits18References1
CVE
CVE
added 2026/01/07 11:57 p.m.442 views

CVE-2026-21858

CVE-2026-21858 (n8n) affects n8n versions starting from 1.65.0 up to and including 1.120.x. The root cause is an inadequate input validation in form-based workflow processing, leading to Content-Type confusion that enables an unauthenticated attacker to read arbitrary server files and potentially...

10CVSS6.3AI score0.71647EPSS
In wildExploits18References2Affected Software1
The Hacker News
The Hacker News
added 2026/01/07 1:48 p.m.18 views

Critical n8n Vulnerability (CVSS 10.0) Allows Unauthenticated Attackers to Take Full Control

Cybersecurity researchers have disclosed details of yet another maximum-severity security flaw in n8n, a popular workflow automation platform, that allows an unauthenticated remote attacker to gain complete control over susceptible instances. The vulnerability, tracked as CVE-2026-21858 CVSS scor...

10CVSS9.1AI score0.97875EPSS
Exploits42
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.9 views

PT-2026-1553

Name of the Vulnerable Software and Affected Versions EmailKit versions up to and including 1.6.1 Description The EmailKit plugin for WordPress is susceptible to Arbitrary File Read due to a Path Traversal issue. This occurs because of a lack of path validation in the create template REST API...

6.5CVSS5.9AI score0.00249EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/26 7:3 p.m.9 views

PT-2025-136: Path Traversal in mPDF

The vulnerability was identified in mPDF, version 2.8.5. The application performs improper validation of data received from the user, which allows an attacker to read files stored on the server. Vulnerability status: Confirmed during research Date of vulnerability discovery: 11.04.2025...

6.9CVSS5.9AI score
Exploits0
NVD
NVD
added 2025/12/22 10:15 p.m.4 views

CVE-2021-47714

Hasura GraphQL 1.3.3 contains a local file read vulnerability that allows attackers to access system files through SQL injection in the query endpoint. Attackers can exploit the pgreadfile PostgreSQL function by crafting malicious SQL queries to read arbitrary files on the server...

6.9CVSS0.00183EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2025/12/15 12:0 a.m.150 views

📄 GetSimple CMS 3.3.16 Cross Site Request Forgery

GetSimple CMS version 3.3.16 cross site request forgery proof of concept that deletes all backups without user confirmation. ============================================================================================================================================= | Title : GetSimple CMS 3.3.16...

7.2CVSS6.8AI score0.07548EPSS
Exploits3
Veracode
Veracode
added 2025/12/13 7:37 a.m.7 views

Directory Traversal

NiceGUI is vulnerable to Directory Traversal. The vulnerability is due to improper validation in the App.addmediafiles function, which allows an attacker to access and read arbitrary files from the server filesystem...

7.5CVSS5.9AI score0.00963EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2025/12/12 8:20 a.m.4 views

EUVD-2025-203062

The Simple CSV Table plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.0.1 via the href parameter in the csv shortcode. This is due to insufficient path validation before concatenating user-supplied input to a base directory path. This makes it...

6.5CVSS5.4AI score0.00613EPSS
Exploits0References4
NVD
NVD
added 2025/12/05 6:16 a.m.5 views

CVE-2016-20023

In CKSource CKFinder before 2.5.0.1 for ASP.NET, authenticated users could download any file from the server if the correct path to a file was provided...

6.5CVSS0.003EPSS
Exploits0References2
Rows per page
Query Builder