Lucene search
+L

6 matches found

AlpineLinux
AlpineLinux
added 2026/01/09 7:53 a.m.4 views

CVE-2025-69194

A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead to data loss or potentially...

9.8CVSS6AI score0.00707EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/12/29 2:41 p.m.9 views

CVE-2025-69194

A security issue was discovered in GNU Wget2 when handling Metalink documents. The application fails to properly validate file paths provided in Metalink elements. An attacker can abuse this behavior to write files to unintended locations on the system. This can lead to data loss or potentially...

8.8CVSS6.4AI score0.00707EPSS
Exploits1References3
NVD
NVD
added 2025/12/26 12:16 a.m.16 views

CVE-2025-68937

Forgejo before 13.0.2 allows attackers to write to unintended files, and possibly obtain server shell access, because of mishandling of out-of-repository symlink destinations for template repositories. This is also fixed for 11 LTS in 11.0.7 and later...

9.5CVSS0.00489EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/12/25 11:57 p.m.2 views

CVE-2025-68937

Forgejo before 13.0.2 allows attackers to write to unintended files, and possibly obtain server shell access, because of mishandling of out-of-repository symlink destinations for template repositories. This is also fixed for 11 LTS in 11.0.7 and later...

9.5CVSS6.6AI score0.00489EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.9 views

PT-2025-53429

Name of the Vulnerable Software and Affected Versions Forgejo versions prior to 13.0.2 Forgejo version 11.0.7 and later Description The software contains a flaw related to the handling of symlinks within template repositories. This mishandling could allow attackers to write to unintended files,...

9.5CVSS7.4AI score0.00489EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2023/03/15 12:0 a.m.4 views

PT-2023-21678 · Unknown +2 · Stellarium +2

Name of the Vulnerable Software and Affected Versions: Stellarium versions through 1.2 Description: The issue allows attackers to write to files that are typically unintended, such as ones with absolute pathnames or .. directory traversal. Recommendations: For Stellarium versions through 1.2,...

9.8CVSS6.9AI score0.01558EPSS
Exploits0References28
Rows per page
Query Builder