Lucene search
K

15 matches found

NVD
NVD
•added 2026/06/09 10:16 a.m.•21 views

CVE-2026-46748

A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 6. The affected system includes a binary that is configured with the capdacoverride capability. This capability allows the process to bypass file system permission checks, resulting in unrestricted file system access...

8.8CVSS0.00206EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2025/10/08 12:0 a.m.•5 views

PT-2025-41318

Name of the Vulnerable Software and Affected Versions Flowise versions prior to 3.0.8 Description Flowise is a drag and drop user interface used to build customized large language model flows. Versions prior to 3.0.8 contain a flaw in the WriteFileTool and ReadFileTool components where file path...

9.9CVSS6.8AI score0.12115EPSS
Exploits1References16
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-6883

Malicious code in bioql PyPI...

9.8CVSS7.1AI score0.01292EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•10 views

EUVD-2023-2177

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.01996EPSS
Exploits0References6
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•8 views

EUVD-2025-23247

Malicious code in bioql PyPI...

8CVSS7AI score0.00211EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2025/05/22 6:22 p.m.•6 views

CVE-2021-22967

In Concrete CMS formerly concrete 5 below 8.5.7, IDOR Allows Unauthenticated User to Access Restricted Files If Allowed to Add Message to a Conversation.To remediate this, a check was added to verify a user has permissions to view files before attaching the files to a message in "add / edit...

7.5CVSS6.7AI score0.01109EPSS
Exploits0References1
GithubExploit
GithubExploit
•added 2024/02/14 3:39 p.m.•641 views

Exploit for Path Traversal in Gl-Inet Gl-Ax1800_Firmware

GL-AX1800 Router Security Assessment Report Overview This...

8.8CVSS9.9AI score0.22593EPSS
Exploits2
Vulnrichment
Vulnrichment
•added 2024/02/01 6:1 p.m.•9 views

CVE-2024-1167 SEW-EURODRIVE MOVITOOLS MotionStudio Improper Restriction of XML External Entity Reference

When SEW-EURODRIVE MOVITOOLS MotionStudio processes XML information unrestricted file access can occur...

5.5CVSS6.1AI score0.00541EPSS
Exploits0References2
CNNVD
CNNVD
•added 2024/02/01 12:0 a.m.•5 views

SEW-EURODRIVE MOVITOOLS MotionStudio Code Issue Vulnerability

SEW-EURODRIVE MOVITOOLS MotionStudio is an engineering software from SEW-EURODRIVE. A security vulnerability exists in SEW-EURODRIVE MOVITOOLS MotionStudio version 6.5.0.2, which originates from the possibility of unrestricted file access when processing XML messages...

7.5CVSS6.8AI score0.00541EPSS
Exploits0References3
NVD
NVD
•added 2021/09/27 3:15 p.m.•16 views

CVE-2021-37539

Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution...

9.8CVSS0.93401EPSS
Exploits0References2
OSV
OSV
•added 2021/09/27 3:15 p.m.•6 views

CVE-2021-37539

Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution...

9.8CVSS7.4AI score0.93401EPSS
Exploits0References2
OSV
OSV
•added 2017/11/06 5:29 p.m.•5 views

CVE-2017-11177

TRITON AP-EMAIL 8.2 before 8.2 IB does not properly restrict file access in an unspecified directory...

7.5CVSS5.8AI score0.01033EPSS
Exploits0References1
Exploit DB
Exploit DB
•added 2017/08/01 12:0 a.m.•117 views

VehicleWorkshop - Arbitrary File Upload

Exploit Title: VehicleWorkshop Unrestricted File Upload or Shell Upload Exploit Author: Touhid M.Shaikh Date: 1/08/2017 Vendor Homepage: https://github.com/spiritson/VehicleWorkshop Tested on : Kali Linux 2.0 64 bit and Windows 7 =================== Vulnerable Page: ===================...

7.4AI score
Exploits0
seebug.org
seebug.org
•added 2014/07/01 12:0 a.m.•25 views

QSSL Voyager 2.0 1B .photon Directory Information Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/1648/info The web server supplied with the QNX Voyager demo disk contains several vulnerabilities. First, Voyager will follow relative paths passed to it in requests. This includes ../ style paths, which will allow Voyage...

7.1AI score
Exploits0
NVD
NVD
•added 1997/09/01 4:0 a.m.•13 views

CVE-1999-0183

Linux implementations of TFTP would allow access to files outside the restricted directory...

6.4CVSS0.01555EPSS
Exploits0References1
Rows per page
Query Builder