Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 12 hours ago3 views

CVE-2026-15331

A vulnerability was identified in zhayujie CowAgent up to 2.1.0. The affected element is the function addurl/addpackage of the file agent/skills/service.py of the component Skill Installation Handler. The manipulation of the argument Name leads to path traversal. The attack may be initiated...

5.5CVSS5.7AI score
Exploits0References10Affected Software1
CVE
CVE
added 12 hours ago6 views

CVE-2026-15331

The CVE-2026-15331 vulnerability affects zhayujie CowAgent up to 2.1.0. The issue resides in the Skill Installation Handler’s component, specifically the _add_url/_add_package functions in agent/skills/service.py, where manipulation of the Name argument enables path traversal. A remote attack is ...

5.5CVSS5.7AI score
Exploits0References9
Snyk
Snyk
added 2026/05/05 9:13 p.m.7 views

Directory Traversal

Overview pyload-ng is a The free and open-source Download Manager written in pure Python Affected versions of this package are vulnerable to Directory Traversal via the addpackage function. An attacker can write files outside the intended download directory by submitting specially crafted folder...

8.1CVSS6.3AI score0.00342EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-17178

Malware in sbrugna...

4.8CVSS5AI score0.07246EPSS
Exploits5References5
NVD
NVD
added 2019/03/26 4:29 p.m.32 views

CVE-2019-7646

CentOS-WebPanel.com aka CWP CentOS Web Panel through 0.9.8.763 is vulnerable to Stored/Persistent XSS for the "Package Name" field via the addpackage module parameter...

4.8CVSS4.9AI score0.07246EPSS
Exploits5References3
OSV
OSV
added 2019/03/26 4:29 p.m.3 views

CVE-2019-7646

CentOS-WebPanel.com aka CWP CentOS Web Panel through 0.9.8.763 is vulnerable to Stored/Persistent XSS for the "Package Name" field via the addpackage module parameter...

4.8CVSS5.8AI score0.07246EPSS
Exploits5References3
Rows per page
Query Builder