Lucene search
K

305 matches found

OSV
OSV
added 2025/07/23 6:15 a.m.3 views

CVE-2025-54446

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00616EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 6:15 a.m.7 views

CVE-2025-54446

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS0.00616EPSS
Exploits0References1
OSV
OSV
added 2025/07/23 6:15 a.m.4 views

CVE-2025-54443

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00575EPSS
Exploits0References1
NVD
NVD
added 2025/07/23 6:15 a.m.15 views

CVE-2025-54438

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS0.00611EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 5:36 a.m.28 views

CVE-2025-54438

Samsung MagicINFO 9 Server is affected by a path traversal vulnerability that allows uploading a web shell. The issue exists in MagicINFO 9 Server versions prior to 21.1080.0 and stems from improper restriction of restricted directory pathnames in the download/upload workflow. Impact is high (una...

9.8CVSS7.1AI score0.00611EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/23 5:36 a.m.5 views

CVE-2025-54438

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS6.4AI score0.00611EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/23 5:36 a.m.4 views

CVE-2025-54438

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00611EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/07/23 5:36 a.m.27 views

CVE-2025-54438

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS0.00611EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/23 5:34 a.m.7 views

CVE-2025-54443

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS0.00575EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 5:34 a.m.5 views

CVE-2025-54443

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS6.4AI score0.00575EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/23 5:34 a.m.1 views

CVE-2025-54443

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00575EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/07/23 5:32 a.m.9 views

CVE-2025-54446

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS0.00616EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/23 5:32 a.m.2 views

CVE-2025-54446

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS5.8AI score0.00616EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/23 5:32 a.m.6 views

CVE-2025-54446

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Samsung Electronics MagicINFO 9 Server allows Upload a Web Shell to a Web Server.This issue affects MagicINFO 9 Server: less than 21.1080.0...

9.8CVSS6.4AI score0.00616EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 5:32 a.m.21 views

CVE-2025-54446

Samsung MagicINFO 9 Server is affected by a path traversal vulnerability that allows uploading a web shell. The issue stems from improper validation in the ResponseUploadActivity/upload handling, enabling remote code execution in the context of SYSTEM. Affected products: MagicINFO 9 Server versio...

9.8CVSS7.1AI score0.00616EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/23 12:0 a.m.7 views

PT-2025-30526 · Samsung · Magicinfo 9 Server

Name of the Vulnerable Software and Affected Versions: MagicINFO 9 Server versions prior to 21.1080.0 Description: A path traversal issue exists in Samsung Electronics MagicINFO 9 Server, potentially allowing an attacker to upload a web shell to a web server. Recommendations: Update MagicINFO 9...

9.8CVSS6.4AI score0.00611EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/07/23 12:0 a.m.4 views

PT-2025-30534 · Samsung · Magicinfo 9 Server

Name of the Vulnerable Software and Affected Versions: MagicINFO 9 Server versions prior to 21.1080.0 Description: A path traversal vulnerability exists in Samsung Electronics MagicINFO 9 Server. This issue allows for the upload of a web shell to a web server. Recommendations: Update MagicINFO 9...

9.8CVSS6.4AI score0.00616EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/07/16 11:28 a.m.6 views

CVE-2025-29009 WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce allows Upload a Web Shell to a Web Server. This issue affects Medical Prescription Attachment Plugin for WooCommerce: from n/a through 1.2.3...

10CVSS6.4AI score0.00544EPSS
Exploits3References1
Cvelist
Cvelist
added 2025/07/16 11:28 a.m.17 views

CVE-2025-29009 WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce medical-prescription-attachment-plugin-for-woocommerce allows Upload a Web Shell to a Web Server.This issue affects Medical Prescription Attachment Plugin for WooCommerce...

10CVSS0.00544EPSS
Exploits3References1
Vulnrichment
Vulnrichment
added 2025/07/16 11:28 a.m.7 views

CVE-2025-48300 WordPress Groundhogg plugin <= 4.2.1 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Adrian Tobey Groundhogg groundhogg allows Upload a Web Shell to a Web Server.This issue affects Groundhogg: from n/a through = 4.2.1...

9.1CVSS5.2AI score0.00423EPSS
Exploits0References1
Rows per page
Query Builder