Lucene search
+L

24 matches found

vulnrichment
vulnrichment
added 2026/05/26 12:0 a.m.10 views

CVE-2026-48693

FastNetMon Community Edition through 1.2.9 is vulnerable to a local symlink attack via predictable file paths in /tmp. The statistics file path defaults to '/tmp/fastnetmon.dat' src/fastnetmon.cpp line 159. The printscreencontentsintofile function src/fastnetmonlogic.cpp line 2186 opens this path...

5.9AI score0.00127EPSS
Exploits0References4
cnnvd
cnnvd
added 2026/03/05 12:0 a.m.8 views

WordPress plugin Ekoterra 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

8.1CVSS5.8AI score0.00403EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/01/22 12:0 a.m.7 views

WordPress plugin MyHome Core has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.5CVSS5.8AI score0.00463EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-0626

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01822EPSS
Exploits1References7
redhatcve
redhatcve
added 2025/05/22 3:24 a.m.11 views

CVE-2013-0967

CoreTypes in Apple Mac OS X before 10.8.3 includes JNLP files in the list of safe file types, which allows remote attackers to bypass a Java plug-in disabled setting, and trigger the launch of Java Web Start applications, via a crafted web site...

4.3CVSS6.5AI score0.01499EPSS
Exploits2References1
attackerkb
attackerkb
added 2022/02/21 7:58 a.m.5 views

CVE-2022-25297

This affects the package drogonframework/drogon before 1.7.5. The unsafe handling of file names during upload using HttpFile::save method may enable attackers to write files to arbitrary locations outside the designated target folder...

8.8CVSS7.3AI score0.01896EPSS
Exploits1References4
ubuntucve
ubuntucve
added 2022/02/18 1:15 p.m.34 views

CVE-2022-25299

This affects the package cesanta/mongoose before 7.6. The unsafe handling of file names during upload using mghttpupload method may enable attackers to write files to arbitrary locations outside the designated target folder...

9.8CVSS7.2AI score0.01433EPSS
Exploits1References3
osv
osv
added 2020/09/11 5:15 p.m.5 views

CVE-2020-1122

An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this vulnerability by running a specially...

5.5CVSS6.7AI score0.00956EPSS
Exploits0References1
osv
osv
added 2018/05/22 5:29 p.m.8 views

CVE-2016-8656

Jboss jbossas before versions 5.2.0-23, 6.4.13, 7.0.5 is vulnerable to an unsafe file handling in the jboss init script which could result in local privilege escalation...

7.8CVSS5.8AI score0.00366EPSS
Exploits0References13
cve
cve
added 2018/05/22 5:0 p.m.115 views

CVE-2016-8656

Technical details about CVE-2016-8656 are not provided in the connected documents. Public information in the Initial Description is limited to vulnerability wording. Monitor for updates from vendors and security advisories.

7.8CVSS7.4AI score0.00366EPSS
Exploits0References13Affected Software1
cvelist
cvelist
added 2018/05/22 5:0 p.m.35 views

CVE-2016-8656

Jboss jbossas before versions 5.2.0-23, 6.4.13, 7.0.5 is vulnerable to an unsafe file handling in the jboss init script which could result in local privilege escalation...

7CVSS7.5AI score0.00366EPSS
Exploits0References13
nvd
nvd
added 2018/01/10 7:29 p.m.30 views

CVE-2017-12189

It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656...

7.8CVSS7.2AI score0.00337EPSS
Exploits0References6
prion
prion
added 2018/01/10 7:29 p.m.26 views

Privilege escalation

It was discovered that the jboss init script as used in Red Hat JBoss Enterprise Application Platform 7.0.7.GA performed unsafe file handling which could result in local privilege escalation. This issue is a result of an incomplete fix for CVE-2016-8656...

4.6CVSS7.5AI score0.00366EPSS
Exploits0References6Affected Software2
redhat
redhat
added 2018/01/03 10:20 a.m.4 views

jboss: unsafe chown of server.log in jboss init script allows privilege escalation (Incomplete fix for CVE-2016-8656)

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00366EPSS
Exploits0References4
redhat
redhat
added 2017/03/07 7:6 p.m.7 views

tomcat: unsafe chown of catalina.log in tomcat init script allows privilege escalation

It was reported that the Tomcat init script performed unsafe file handling, which could result in local privilege escalation...

7.8CVSS7.3AI score0.09783EPSS
Exploits8References5
redhat
redhat
added 2017/02/02 9:3 p.m.9 views

jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00366EPSS
Exploits0References4
redhat
redhat
added 2017/02/02 8:39 p.m.8 views

jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00366EPSS
Exploits0References4
redhat
redhat
added 2017/02/02 8:33 p.m.9 views

jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00366EPSS
Exploits0References4
seebug
seebug
added 2016/11/02 12:0 a.m.4246 views

MySQL / MariaDB / PerconaDB elevation of privilege vulnerability, CVE-2016-6664)

I. VULNERABILITY ------------------------- MySQL / MariaDB / PerconaDB - Root Privilege Escalation MySQL = 5.5.51 = 5.6.32 = 5.7.14 MariaDB All current Percona Server 5.5.51-38.2 5.6.32-78-1 5.7.14-8 Percona XtraDB Cluster 5.6.32-25.17 5.7.14-26.17 5.5.41-37.0 II. BACKGROUND...

10CVSS8AI score0.6773EPSS
Exploits21
nessus
nessus
added 2016/09/16 12:0 a.m.29 views

Debian DSA-3670-1 : tomcat8 - security update

Dawid Golunski of LegalHackers discovered that the Tomcat init script performed unsafe file handling, which could result in local privilege escalation. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

7.8CVSS7.4AI score0.09783EPSS
Exploits8References3
Rows per page
Query Builder