CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

72 matches found

Vulnrichment•added 2025/05/11 4:0 a.m.•8 views

CVE-2025-4529 Seeyon Zhiyuan OA Web Application System ZIP File M3CoreController.class download path traversal

A vulnerability was found in Seeyon Zhiyuan OA Web Application System 8.1 SP2. It has been classified as problematic. Affected is the function Download of the file...

5.3CVSS6.9AI score0.00452EPSS

Exploits0References4

OSV•added 2024/05/26 4:15 a.m.•5 views

CVE-2024-5353

A vulnerability classified as critical has been found in anji-plus AJ-Report up to 1.4.1. This affects the function decompress of the component ZIP File Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

9.8CVSS6.9AI score0.00802EPSS

Exploits1References4

NVD•added 2024/05/26 4:15 a.m.•18 views

CVE-2024-5353

9.8CVSS6.4AI score0.00802EPSS

Exploits1References4

Vulnrichment•added 2024/05/26 4:0 a.m.•14 views

CVE-2024-5353 anji-plus AJ-Report ZIP File decompress path traversal

6.5CVSS6.9AI score0.00802EPSS

Exploits1References4

CVE•added 2024/05/26 4:0 a.m.•54 views

CVE-2024-5353

CVE-2024-5353 affects anji-plus AJ-Report up to 1.4.1. The issue is a path traversal in the ZIP File Handler decompress function, allowing remote initiation. Exploit has been disclosed publicly. No remediation details are provided in the connected documents; no explicit fixes or patched versions ...

9.8CVSS6.5AI score0.00802EPSS

Exploits1References4Affected Software1

CNNVD•added 2024/05/26 12:0 a.m.•4 views

AJ-Report 路径遍历漏洞

AJ-Report is a fully open source, drag-and-drop editing visual design tool from anji-plus open source. A path traversal vulnerability exists in anji-plus AJ-Report 1.4.1 and earlier versions, which stems from a path traversal vulnerability in the function decompress of the component ZIP File...

9.8CVSS6.5AI score0.00802EPSS

Exploits1References5

NVD•added 2023/03/06 8:15 a.m.•12 views

CVE-2023-1191

A vulnerability classified as problematic has been found in fastcms. This affects an unknown part of the file admin/TemplateController.java of the component ZIP File Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed t...

7.2CVSS5.5AI score0.00908EPSS

Exploits1References4

Prion•added 2023/03/06 8:15 a.m.•17 views

Path traversal

5.8CVSS7AI score0.00908EPSS

Exploits1References4

Cvelist•added 2023/03/06 7:21 a.m.•19 views

CVE-2023-1191 fastcms ZIP File TemplateController.java path traversal

5.8CVSS7.2AI score0.00908EPSS

Exploits1References4

CVE•added 2023/03/06 7:21 a.m.•51 views

CVE-2023-1191

CVE-2023-1191 affects the fastcms ZIP File Handler, specifically the file path admin/TemplateController.java. Multiple connected sources describe a path traversal vulnerability that can be exploited remotely, with public disclosure of exploits. The initial descriptions note that the product does ...

7.2CVSS5.8AI score0.00908EPSS

Exploits1References4Affected Software1

Positive Technologies•added 2023/03/06 12:0 a.m.•4 views

PT-2023-16811 · Fastcms · Fastcms

Name of the Vulnerable Software and Affected Versions: fastcms affected versions not specified Description: A problematic vulnerability has been found in fastcms, affecting an unknown part of the file admin/TemplateController.java of the component ZIP File Handler. The manipulation leads to path...

7.2CVSS5.1AI score0.00908EPSS

Exploits1References7

NVD•added 2022/12/25 11:15 a.m.•24 views

CVE-2020-36628

A vulnerability classified as critical has been found in Calsign APDE. This affects the function handleExtract of the file APDE/src/main/java/com/calsignlabs/apde/build/dag/CopyBuildTask.java of the component ZIP File Handler. The manipulation leads to path traversal. Upgrading to version...

9.8CVSS0.00867EPSS

Exploits0References3

OSV•added 2022/12/25 11:15 a.m.•16 views

CVE-2020-36628

9.8CVSS6.9AI score

Exploits0References3

Prion•added 2022/12/25 11:15 a.m.•17 views

Path traversal

7.5CVSS9.4AI score0.00867EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/12/25 10:19 a.m.•25 views

CVE-2020-36628 Calsign APDE ZIP File CopyBuildTask.java handleExtract path traversal

5.5CVSS9.7AI score0.00867EPSS

Exploits0References3

CVE•added 2022/12/25 10:19 a.m.•46 views

CVE-2020-36628

Summary (CVE-2020-36628, Calsign APDE): A path traversal vulnerability exists in the ZIP File Handler’s CopyBuildTask.java handleExtract function of Calsign APDE. Versions prior to 0.5.2-pre2-alpha are affected; upgrading to 0.5.2-pre2-alpha mitigates the issue. The CVE impact is tied to untruste...

9.8CVSS7.6AI score0.00867EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2022/12/25 12:0 a.m.•3 views

PT-2022-9023 · Calsign · Calsign Apde

Name of the Vulnerable Software and Affected Versions: Calsign APDE versions prior to 0.5.2-pre2-alpha Description: A critical issue has been found in the ZIP File Handler component of Calsign APDE, affecting the handleExtract function in the file...

9.8CVSS5.8AI score0.00867EPSS

Exploits0References6

OSV•added 2022/12/14 12:30 p.m.•10 views

GHSA-CMWM-45MJ-MPG3 SCIFIO vulnerable to Path Traversal

A vulnerability classified as critical was found in scifio. Affected by this vulnerability is the function downloadAndUnpackResource of the file src/test/java/io/scif/util/DefaultSampleFilesService.java of the component ZIP File Handler. The manipulation leads to path traversal. The attack can be...

9.8CVSS7.8AI score0.00536EPSS

Exploits0References4