Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2026/05/13 8:23 p.m.4 views

CVE-2026-43891

changedetection.io is a free open source web page change detection tool. Prior to 0.55.1, the vulnerability is caused by trusting attacker-controlled snapshot paths restored from backup files. The vulnerable flow starts in the backup restore logic. When a backup ZIP is restored, the application...

7.5CVSS5.8AI score0.00037EPSS
Exploits1References1
OSV
OSVadded 2026/05/12 6:17 p.m.11 views

PYSEC-2026-30

changedetection.io is a free open source web page change detection tool. Prior to 0.55.1, the vulnerability is caused by trusting attacker-controlled snapshot paths restored from backup files. The vulnerable flow starts in the backup restore logic. When a backup ZIP is restored, the application...

7.5CVSS5.8AI score0.00037EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/05/12 4:56 p.m.4 views

CVE-2026-43891 changedetection.io: Arbitrary Local File Read via crafted backup restore

changedetection.io is a free open source web page change detection tool. Prior to 0.55.1, the vulnerability is caused by trusting attacker-controlled snapshot paths restored from backup files. The vulnerable flow starts in the backup restore logic. When a backup ZIP is restored, the application...

7.5CVSS5.8AI score0.00037EPSS
Exploits1References1
Snyk
Snykadded 2026/05/05 9:16 p.m.5 views

External Control of File Name or Path

Overview changedetection.io is a Website change detection and monitoring service Affected versions of this package are vulnerable to External Control of File Name or Path through the backup restoration. An attacker can access arbitrary local files by supplying a crafted backup archive containing ...

8.7CVSS5.9AI score0.00037EPSS
Exploits1References2
SUSE CVE
SUSE CVEadded 2023/02/15 3:33 a.m.2 views

SUSE CVE-2022-1798

A path traversal vulnerability in KubeVirt versions up to 0.56 and 0.55.1 on all platforms allows a user able to configure the kubevirt to read arbitrary files on the host filesystem which are publicly readable or which are readable for UID 107 or GID 107. /proc/self/ is not accessible...

7.5CVSS6.7AI score0.0013EPSS
Exploits1References5
CBLMariner
CBLMarineradded 2022/10/05 11:33 p.m.15 views

CVE-2022-1798 affecting package kubevirt for versions less than 0.55.1-1

CVE-2022-1798 affecting package kubevirt for versions less than 0.55.1-1. An upgraded version of the package is available that resolves this issue...

8.7CVSS7.9AI score0.0013EPSS
Exploits1
OSV
OSVadded 2022/09/15 4:15 p.m.3 views

AZL-10974 CVE-2022-1798 affecting package kubevirt for versions less than 0.55.1-1

A path traversal vulnerability in KubeVirt versions up to 0.56 and 0.55.1 on all platforms allows a user able to configure the kubevirt to read arbitrary files on the host filesystem which are publicly readable or which are readable for UID 107 or GID 107. /proc/self/ is not accessible...

6.5CVSS7.1AI score0.0013EPSS
Exploits1References1
Rows per page
Query Builder