CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

159 matches found

vulnersOsv•added 2026/05/05 4:16 p.m.•4 views

cg-django-uaa (=2.1.9), deeplabelnet (>=0.1.0 <=0.1.16) +39 more potentially affected by CVE-2026-5766 via django (>=5.2.0 <=5.2.13)

django PYPI version =5.2.0, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =5.2.0, =5.2.1 - djbackup =2.1.0 and more Source cves: CVE-2026-5766 Source advisory: OSV:PYSEC-2026-54...

6.3CVSS5.8AI score0.00051EPSS

Exploits0

Packet Storm•added 2026/03/05 12:0 a.m.•85 views

📄 basic-ftp downloadToDir() Path Traversal

basic-ftp versions prior to 5.2.0 suffer from a path traversal vulnerability in downloadToDir. ============================================================================================================================================= | Title : basic-ftp prior to version 5.2.0 Path Traversal in...

5.9AI score

Exploits0

Cvelist•added 2026/02/25 2:58 p.m.•16 views

CVE-2026-27699 Basic FTP has Path Traversal Vulnerability in its downloadToDir() method

The basic-ftp FTP client library for Node.js contains a path traversal vulnerability CWE-22 in versions prior to 5.2.0 in the downloadToDir method. A malicious FTP server can send directory listings with filenames containing path traversal sequences ../ that cause files to be written outside the...

9.1CVSS0.00152EPSS

Exploits2References3

vulnersOsv•added 2026/02/03 3:49 p.m.•0 views

cg-django-uaa (=2.1.9), deeplabelnet (>=0.1.0 <=0.1.16) +21 more potentially affected by CVE-2026-1285 via django (>=5.2.0 <=5.2.10)

django PYPI version =5.2.0, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =5.2.0, =1.0.0, =1.0.1 and more Source cves: CVE-2026-1285 Source advisory: SNYK:PYTHON-DJANGO-15199281...

7.5CVSS7AI score0.00067EPSS

Exploits0

OSV•added 2026/01/20 1:15 a.m.•2 views

DEBIAN-CVE-2026-23949

jaraco.context, an open-source software package that provides some useful decorators and context managers, has a Zip Slip path traversal vulnerability in the jaraco.context.tarball function starting in version 5.2.0 and prior to version 6.1.0. The vulnerability may allow attackers to extract file...

8.6CVSS5.4AI score0.00101EPSS

Exploits1References1

OSV•added 2025/11/19 9:15 a.m.•1 views

CVE-2025-11446

Insertion of Sensitive Information into Log File vulnerability in upKeeper Solutions upKeeper Manager allows Use of Known Domain Credentials.This issue affects upKeeper Manager: from 5.2.0 before 5.2.12...

6.5CVSS5.8AI score0.00024EPSS

Exploits0References1

CVE•added 2025/11/19 8:53 a.m.•5 views

CVE-2025-11446

CVE-2025-11446 affects upKeeper Manager 5.2.0–5.2.11 (pre-5.2.12). The issue is Insertion of Sensitive Information into Log File, enabling use of Known Domain Credentials. Impact is Confidentiality HIGH; Exploit details are not provided in the documents. Remediation: upgrade to 5.2.12 or later (p...

7.3CVSS6.5AI score0.00024EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/11/19 12:0 a.m.•1 views

upKeeper Manager 安全漏洞

upKeeper Manager is an IT system management and automation tool from the Swedish company upKeeper. A security vulnerability exists in upKeeper Manager versions 5.2.0 through prior to 5.2.12, which stems from the insertion of sensitive information into a log file that could lead to the use of know...

7.3CVSS6.3AI score0.00024EPSS

Exploits0References1