Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/03/06 12:0 a.m.3 views

PT-2026-23634

Name of the Vulnerable Software and Affected Versions Chamilo versions prior to 1.11.34 Description Chamilo LMS is susceptible to an authenticated remote code execution issue stemming from insufficient validation of uploaded files. The application depends on MIME-type verification for file upload...

8.8CVSS6.5AI score0.00729EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2026/02/27 7:45 p.m.4 views

CVE-2026-26228

VideoLAN VLC for Android prior to version 3.7.0 contains a path traversal vulnerability in the Remote Access Server routing for the authenticated endpoint GET /download. The file query parameter is concatenated into a filesystem path under the configured download directory without canonicalizatio...

4.9CVSS5.9AI score0.00275EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/02/26 3:21 p.m.21 views

CVE-2026-26228 VLC for Android < 3.7.0 Remote Access Path Traversal

VideoLAN VLC for Android prior to version 3.7.0 contains a path traversal vulnerability in the Remote Access Server routing for the authenticated endpoint GET /download. The file query parameter is concatenated into a filesystem path under the configured download directory without canonicalizatio...

4.9CVSS0.00275EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/09/02 10:11 p.m.5 views

CVE-2025-22439

In onLastAccessedStackLoaded of ActionHandler.java , there is a possible way to bypass storage restrictions across apps due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

0.00077EPSS
Exploits0References2
CVE
CVEadded 2025/09/02 10:11 p.m.436 views

CVE-2025-22439

CVE-2025-22439 involves a vulnerability in Android’s ActionHandler.java: in onLastAccessedStackLoaded, a missing permission check could bypass storage restrictions across apps, enabling local elevation of privilege with user interaction required. Exploitation details and risk are described across...

7.3CVSS6.2AI score0.00077EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2016/04/18 12:0 a.m.18 views

CVE-2016-0848

Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to bypass private-storage file-access restrictions via a crafted application that changes a symlink target, as demonstrated by obtaining Signature or...

7.7AI score0.00159EPSS
Exploits0References2
OpenVAS
OpenVASadded 2015/03/25 12:0 a.m.5 views

IT-Grundschutz M4.305: Einsatz von Speicherbeschränkungen (Quotas)

IT-Grundschutz M4.305: Einsatz von Speicherbeschränkungen Quotas. Stand: 14. Ergänzungslieferung 14. EL. OpenVAS Vulnerability Test $Id: GSHBM4305.nasl 7883 2017-11-23 11:22:59Z emoss $ IT-Grundschutz, 14. EL, Maßnahme 4.305 Authors: Thomas Rotter Copyright: Copyright c 2015 Greenbone Networks...

7.3AI score
Exploits0References1
Rows per page
Query Builder