Lucene search
K

12 matches found

NVD
NVD
added 6 days ago6 views

CVE-2026-55760

Handlebars.java provides logic-less and semantic Mustache templates with Java. Prior to 4.5.2, applications that pass user-controlled input to Handlebars.compile using FileTemplateLoader or ClassPathTemplateLoader are vulnerable to path traversal, allowing arbitrary file read through template nam...

7.5CVSS0.00414EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/06/17 6:42 p.m.11 views

handlebars.java FileTemplateLoader Path Traversal

Impact Any application that passes user-controlled input to Handlebars.compile using a FileTemplateLoader or ClassPathTemplateLoader is vulnerable to arbitrary file read. This is a realistic attack surface for web applications that use template names from URL path parameters, request parameters, ...

7.5CVSS5.5AI score0.00414EPSS
Exploits0References2Affected Software1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Twig

Twig is a template language for PHP. Versions 1.x prior to 1.44.7, 2.x prior to 2.15.3, and 3.x prior to 3.4.3 encounter an issue when the filesystem loader loads templates whose names are user-inputs. It’s possible to use the source or include statement to read arbitrary files from outside the...

7.5CVSS7.3AI score0.01557EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/11 2:57 p.m.11 views

Directory Traversal

Overview python-liquid is an A Python engine for the Liquid template language. Affected versions of this package are vulnerable to Directory Traversal via the FileSystemLoader and CachingFileSystemLoader components. An attacker can access and render arbitrary files outside the intended search pat...

8.2CVSS6.3AI score0.00335EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/07 6:17 p.m.2 views

CVE-2026-39345 OrangeHRM Affected by Arbitrary File Read via Path Traversal in Email Template Loader

OrangeHRM is a comprehensive human resource management HRM system. From 5.0 to 5.8, OrangeHRM Open Source fails to restrict email template file resolution to the intended plugins directory, allowing an authenticated actor who can influence the template path to read arbitrary local files. This...

4.6CVSS6AI score0.00323EPSS
Exploits0References1
CVE
CVE
added 2026/04/07 6:17 p.m.16 views

CVE-2026-39345

OrangeHRM Open Source versions 5.0–5.8 are affected by a path traversal vulnerability in the Email Template Loader that can allow an authenticated actor who can influence the template path to read arbitrary local files. Root cause: insufficient restriction of template file resolution to the inten...

4.9CVSS6AI score0.00323EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/04/07 6:17 p.m.3 views

CVE-2026-39345 OrangeHRM Affected by Arbitrary File Read via Path Traversal in Email Template Loader

OrangeHRM is a comprehensive human resource management HRM system. From 5.0 to 5.8, OrangeHRM Open Source fails to restrict email template file resolution to the intended plugins directory, allowing an authenticated actor who can influence the template path to read arbitrary local files. This...

4.6CVSS6AI score0.00323EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/24 10:9 p.m.8 views

Scriban has an authorization bypass due to stale include cache surviving TemplateContext.Reset()

Summary TemplateContext.Reset claims that a TemplateContext can be reused safely on the same thread, but it does not clear CachedTemplates. If an application pools TemplateContext objects and uses an ITemplateLoader that resolves content per request, tenant, or user, a previously authorized inclu...

5.9AI score
Exploits0References2Affected Software2
OSV
OSV
added 2026/03/24 10:9 p.m.3 views

GHSA-X6M9-38VM-2XHF Scriban has an authorization bypass due to stale include cache surviving TemplateContext.Reset()

Summary TemplateContext.Reset claims that a TemplateContext can be reused safely on the same thread, but it does not clear CachedTemplates. If an application pools TemplateContext objects and uses an ITemplateLoader that resolves content per request, tenant, or user, a previously authorized inclu...

8.6CVSS5.9AI score
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-6700

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01557EPSS
Exploits0References22
NVD
NVD
added 2010/04/07 6:30 p.m.16 views

CVE-2008-7254

Directory traversal vulnerability in includes/template-loader.php in Irmin CMS formerly Pepsi CMS 0.5 and 0.6 BETA2, when registerglobals is enabled, allows remote attackers to include and execute arbitrary files via a .. dot dot in the RootPath parameter. NOTE: some of these details are obtained...

6.8CVSS7.3AI score0.01857EPSS
Exploits1References4
exploitpack
exploitpack
added 2010/03/30 12:0 a.m.19 views

Pepsi CMS (Irmin cms) pepsi-0.6-BETA2 - Multiple Local File

Pepsi CMS Irmin cms pepsi-0.6-BETA2 - Multiple Local File Pepsi CMS Irmin cms pepsi-0.6-BETA2 Multiple Local File Vulnerability fucking the Web Apps LFI 1 - attack edition /\ \ /\ \ /\ /\ \ \ \ \L\ \ \ /'\ /\ \ \ ,\ \ \ \ \ /\ /\ \ /'\ \ , /\ \ /' \ /' \ \ \ /\ \ \ /'\ \ \ /\ \ \ /\ /...

7.4AI score
Exploits0
Rows per page
Query Builder