Lucene search
+L

5 matches found

Vulnrichment
Vulnrichment
added 2026/05/28 9:18 p.m.10 views

CVE-2026-45403 AnythingLLM: filesystem-copy-file follows nested symlinks and copies files from outside the allowed directory

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the AnythingLLM agent filesystem copy tool validates only the top-level source and destination paths. The recursive copy helper then descends into child...

2CVSS5.8AI score0.00193EPSS
Exploits1References2
OSV
OSV
added 2026/05/28 9:18 p.m.2 views

CVE-2026-45403 AnythingLLM: filesystem-copy-file follows nested symlinks and copies files from outside the allowed directory

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the AnythingLLM agent filesystem copy tool validates only the top-level source and destination paths. The recursive copy helper then descends into child...

2CVSS5.9AI score0.00193EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2026/01/20 8:41 p.m.2 views

CVE-2025-55130

A flaw in Node.js’s Permissions model allows attackers to bypass --allow-fs-read and --allow-fs-write restrictions using crafted relative symlink paths. By chaining directories and symlinks, a script granted access only to the current directory can escape the allowed path and read sensitive files...

9.1CVSS7.2AI score0.01633EPSS
Exploits2References20
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-24554

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00838EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/10/26 12:0 a.m.5 views

Mycodo 路径遍历漏洞

Mycodo is an environment monitoring and conditioning system. Used to couple inputs and outputs to sense and manipulate the environment, Mycodo is vulnerable to a path traversal vulnerability in versions prior to 8.12.7, which stems from a networked system or product failing to properly filter...

8.8CVSS5.6AI score0.01376EPSS
Exploits0References4
Rows per page
Query Builder