Lucene search
K

21 matches found

Veracode
Veracode
added 2026/05/23 6:1 a.m.11 views

Path Traversal

.NET Core is vulnerable to Path Traversal. The vulnerability is due to improper handling of specially crafted files, which allows an attacker to write arbitrary files and directories to unintended locations on a vulnerable system...

4.3CVSS5.9AI score0.00711EPSS
Exploits0References3Affected Software4
EUVD
EUVD
added 2026/05/05 11:25 a.m.7 views

EUVD-2026-27285

OpenClaw before 2026.4.10 contains a path traversal vulnerability in the screenrecord tool's outPath parameter that bypasses workspace-only filesystem guards. Attackers can exploit this by specifying an outPath outside the workspace boundary to write files to unintended locations on the system...

7.1CVSS5.8AI score0.0022EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/04/14 4:21 p.m.4 views

perl: Perl threads have a working directory race condition where file operations may target unintended paths

A flaw was found in the Perl standard library threads component. This vulnerability can allow a local attacker to exploit a race condition in directory handling to access files or load code from unexpected locations...

5.9CVSS6.8AI score0.0037EPSS
Exploits0References11
EUVD
EUVD
added 2026/03/18 1:34 a.m.3 views

EUVD-2026-12738

OpenClaw versions prior to 2026.2.26 contain an approval bypass vulnerability in system.run execution that allows attackers to execute commands from unintended filesystem locations by rebinding writable parent symlinks in the current working directory after approval. An attacker can modify mutabl...

6.9CVSS6.1AI score0.00095EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/02/11 3:40 p.m.7 views

CVE-2026-25869 MiniGal Nano <= 0.3.5 Path Traversal via dir Parameter

MiniGal Nano versions 0.3.5 and prior contain a path traversal vulnerability in index.php via the dir parameter. The application appends user-controlled input to the photos directory and attempts to prevent traversal by removing dot-dot sequences, but this protection can be bypassed using crafted...

6.9CVSS5.6AI score0.005EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/15 4:43 p.m.5 views

CVE-2025-10986

Path traversal in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to write data in unintended locations on disk...

5.5CVSS6.8AI score0.00576EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 3:16 p.m.10 views

CVE-2025-10986

Path traversal in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to write data in unintended locations on disk...

5.5CVSS0.00576EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 2:22 p.m.4 views

EUVD-2025-34209

Path traversal in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to write data in unintended locations on disk...

4.7CVSS6.3AI score0.00576EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.5 views

PT-2025-41929

Name of the Vulnerable Software and Affected Versions Ivanti EPMM versions prior to 12.6.0.2 Ivanti EPMM versions prior to 12.5.0.4 Ivanti EPMM versions prior to 12.4.0.4 Description A path traversal issue exists in the admin panel of Ivanti EPMM. A remote, authenticated attacker with...

4.7CVSS6.5AI score0.00576EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/11 2:55 p.m.15 views

CVE-2024-47830 Plane allows server side request forgery via /_next/image endpoint

Plane is an open-source project management tool. Plane uses the wildcard support to retrieve the image from any hostname as in /web/next.config.js. This may permit an attacker to induce the server side into performing requests to unintended locations. This vulnerability is fixed in 0.23.0...

9.3CVSS6.7AI score0.00553EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/11 2:55 p.m.24 views

CVE-2024-47830 Plane allows server side request forgery via /_next/image endpoint

Plane is an open-source project management tool. Plane uses the wildcard support to retrieve the image from any hostname as in /web/next.config.js. This may permit an attacker to induce the server side into performing requests to unintended locations. This vulnerability is fixed in 0.23.0...

9.3CVSS0.00553EPSS
Exploits1References2
Veracode
Veracode
added 2024/02/16 9:14 p.m.17 views

Path Traversal

engrampa is vulneravle to Path Traversal. The vulnerability occurs an application does not properly validate or sanitize user input during the handling of CPIO archives which does not adequately check the symlink location. It allows an attacker arbitrary file writes to unintended locations and ca...

9.6CVSS7.1AI score0.01652EPSS
Exploits1References5Affected Software1
AlpineLinux
AlpineLinux
added 2024/02/05 3:15 p.m.31 views

CVE-2023-52138

Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be leveraged to achieve full Remote Command Execution RCE on the target. While handling CPIO archives, the Engrampa Archive manager follows symlink, cpio by defau...

7.2AI score0.01652EPSS
Exploits1
Prion
Prion
added 2024/02/05 3:15 p.m.19 views

Path traversal

Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be leveraged to achieve full Remote Command Execution RCE on the target. While handling CPIO archives, the Engrampa Archive manager follows symlink, cpio by defau...

6.8CVSS7.3AI score0.01652EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/02/05 2:51 p.m.23 views

CVE-2023-52138 Path traversal via crafted cpio archives in Engrampa archivers

Engrampa is an archive manager for the MATE environment. Engrampa is found to be vulnerable to a Path Traversal vulnerability that can be leveraged to achieve full Remote Command Execution RCE on the target. While handling CPIO archives, the Engrampa Archive manager follows symlink, cpio by defau...

8.2CVSS9.6AI score0.01652EPSS
Exploits1References4
OSV
OSV
added 2023/03/30 7:15 p.m.33 views

PYSEC-2023-26

MindsDB is an open source machine learning platform. An unsafe extraction is being performed using shutil.unpackarchive from a remotely retrieved tarball. Which may lead to the writing of the extracted files to an unintended location. This vulnerability is sometimes called a TarSlip or a ZipSlip...

8.8CVSS8.8AI score0.00883EPSS
Exploits1References1
F5 Networks
F5 Networks
added 2023/02/21 7:41 p.m.28 views

K16841: GNU C Library (glibc) vulnerability CVE-2013-7423

Security Advisory Description The senddg function in resolv/ressend.c in GNU C Library aka glibc or libc6 before 2.20 does not properly reuse file descriptors, which allows remote attackers to send DNS queries to unintended locations via a large number of request that trigger a call to the...

5CVSS7.7AI score0.05808EPSS
Exploits2Affected Software18
Veracode
Veracode
added 2019/07/15 12:7 a.m.22 views

Authentication Bypass

dbus is vulnerable to authentication bypass. A mishandling of the reference implementation of the DBUSCOOKIESHA allows an attacker with write access to its own home directory to spoof the cookie by manipulating a /.dbus-keyrings symlink which causes the DBusServer with a different uid to read and...

7.1CVSS6.9AI score0.00555EPSS
Exploits0References20Affected Software1
Cvelist
Cvelist
added 2017/11/27 10:0 a.m.21 views

CVE-2017-14390

In Cloud Foundry Foundation cf-deployment v0.35.0, a misconfiguration with Loggregator and syslog-drain causes logs to be drained to unintended locations...

7.5AI score0.01426EPSS
Exploits0References2
Cloud Foundry
Cloud Foundry
added 2017/11/14 12:0 a.m.34 views

CVE-2017-14390: CF-deployment 0.35.0 syslog misconfiguration | Cloud Foundry

Severity Medium Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions cf-deployment v0.35.0 Description A misconfiguration with Loggregator and syslog-drain in cf-deployment causes logs to be drained to unintended locations. Mitigation Users of affected versions should appl...

7.5CVSS7.5AI score0.01426EPSS
Exploits0
Rows per page
Query Builder