Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2026/05/14 5:7 p.m.7 views

CVE-2026-44542 FileBrowser Quantum: Unauthenticated Path Traversal in Public Share Delete Allows Arbitrary File Deletion

FileBrowser Quantum is a free, self-hosted, web-based file manager. Prior to 1.3.1-stable and 1.3.9-beta, attacker-controlled path input is joined with a trusted base path prior to sanitization, allowing traversal sequences e.g., ../ to escape the intended shared directory. As a result, an...

9.1CVSS5.9AI score0.00523EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/13 12:0 a.m.7 views

Laravel Pulse 安全漏洞

Laravel Pulse is an open source real-time application performance monitoring tool and dashboard for Laravel applications from The Laravel Framework. A security vulnerability exists in Laravel Pulse versions prior to 1.3.1, which stems from vulnerability to a remote code execution attack that can ...

8.8CVSS7.7AI score0.28571EPSS
Exploits3References3
Patchstack
Patchstack
added 2024/12/06 1:21 p.m.4 views

WordPress Plugin Check (PCP) plugin < 1.3.1 - Cross-Site Scripting vulnerability

Cross-Site Scripting vulnerability discovered by NinTechNet in WordPress Plugin Plugin Check PCP versions 1.3.1...

6.3AI score
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/04/18 12:0 a.m.6 views

Nanoleaf Desktop App 命令注入漏洞

Nanoleaf Desktop App is a desktop application from Nanoleaf, Inc. for controlling and managing the settings and features of Nanoleaf smart light panels. A security vulnerability exists in Nanoleaf Desktop App versions prior to 1.3.1 that stems from the presence of a command injection vulnerabilit...

9.8CVSS8.3AI score0.024EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/04/18 12:0 a.m.8 views

PT-2023-14976 · Nanoleaf · Nanoleaf Desktop App

Name of the Vulnerable Software and Affected Versions: Nanoleaf Desktop App versions prior to 1.3.1 Description: A command injection issue was discovered, which can be exploited through a crafted HTTP request. Recommendations: For versions prior to 1.3.1, update to version 1.3.1 or later to resol...

9.8CVSS9.6AI score0.024EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/10 12:0 a.m.6 views

Apache Linkis 路径遍历漏洞

Apache Linkis is a library of the U.S. Apache Apache Foundation. Helps to easily connect various backend compute/storage engines. A directory traversal vulnerability exists in Apache Linkis 1.3.1 and earlier versions, which stems from the Manager module not checking the zip path when uploading...

9.8CVSS7.9AI score0.01808EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2018/12/17 12:0 a.m.4 views

PT-2018-15281 · Enlightenment +1 · Terminology +1

Name of the Vulnerable Software and Affected Versions: Terminology versions prior to 1.3.1 Description: The issue allows Remote Code Execution due to the mishandling of popmedia. This can be demonstrated by an unsafe command, such as "cat README.md", when a specific sequence is used. A popmedia...

7.8CVSS8.4AI score0.02654EPSS
Exploits1References16
Rows per page
Query Builder