Clustering Local File Inclusion

Clustering master branch as of commit 53e663e259bcfc8cdecb56c0bb255bd70bfcaa70 is affected by a directory traversal vulnerability. This attack can cause the disclosure of critical secrets stored anywhere on the system and can significantly aid in getting remote code access. id: CVE-2021-43496 inf...

EUVD-2021-1371

Malware in sbrugna...

EUVD-2001-0876

Malware in sbrugna...

EUVD-2022-4986

Malicious code in bioql PyPI...

EUVD-2024-2388

Malicious code in bioql PyPI...

EUVD-2024-1596

Malicious code in bioql PyPI...

EUVD-2023-52246

Malicious code in bioql PyPI...

EUVD-2024-20825

Malicious code in bioql PyPI...

EUVD-2025-13302

Malicious code in bioql PyPI...

CVE-2025-34120

An unauthenticated file download vulnerability exists in LimeSurvey versions from 2.0+ up to and including 2.06+ Build 151014. The application fails to validate serialized input to the admin backup endpoint index.php/admin/update/sa/backup, allowing attackers to specify arbitrary file paths using...

CVE-2025-34023 Karel IP Phone IP1211 Path Traversal

A path traversal vulnerability exists in the Karel IP1211 IP Phone's web management panel. The /cgi-bin/cgiServer.exx endpoint fails to properly sanitize user input to the page parameter, allowing remote authenticated attackers to access arbitrary files on the underlying system by using crafted...

CVE-2025-4364

CVE-2025-4364 affects Assured Telematics Fleet Management System (IoT fleet solution). The connected documents describe an unauthenticated access vulnerability that could disclose system information and enable access to administrative credentials. The primary sources (CISA ICS advisory ICSA-25-14...

Exploit for Path Traversal in Ghost

Proof of Concept PoC for CVE-2023-40028 CVE-2023-40028 is a...

CVE-2023-6343

Tyler Technologies Court Case Management Plus allows a remote, unauthenticated attacker to enumerate and access sensitive files using the tiffserver/tssp.aspx 'FN' and 'PN' parameters. This behavior is related to the use of a deprecated version of Aquaforest TIFF Server, possibly 2.x. The...

CVE-2022-4244

A flaw was found in codeplex-codehaus. A directory traversal attack also known as path traversal aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash ../" sequences and their variations or by using absolute file paths, it may be possib...

Directory Traversal Vulnerability in M18G of Shenzhen Meike Star Communication Technology Co.

The M18G is a wireless router. A directory traversal vulnerability exists in the M18G of Shenzhen Meike Star Communication Technology Co. An attacker can exploit the vulnerability to access arbitrary directories on the file system and read sensitive files...

CVE-2016-0793

Incomplete blacklist vulnerability in the servlet filter restriction mechanism in WildFly formerly JBoss Application Server before 10.0.0.Final on Windows allows remote attackers to read the sensitive files in the 1 WEB-INF or 2 META-INF directory via a request that contains a lowercase or b...

osTicket Local File Inclusion

---------------------------------------------------------------------------------------------------------------------- osTicket - Open Source Support Ticket System module=osTicket&file= Local File Inclusion http://osticket.com...

McGallery 1.01.1 - Lang Argument File Disclosure

McGallery 1.01.1 - Lang Argument File Disclosure source: https://www.securityfocus.com/bid/13963/info McGallery is prone to a file disclosure vulnerability. This could let remote attackers access files on the computer in the context of the Web server process...

CIS WebServer 3.5.13 - Directory Traversal

source: https://www.securityfocus.com/bid/12662/info A vulnerability has been identified in the handling of certain types of requests by CIS WebServer. Because of this, it is possible for an attacker to gain access to potentially sensitive system files. The problem is in the handling of directory...