29 matches found
CVE-2026-25636
Calibre CVE-2026-25636 is a path-traversal vulnerability in EPUB conversion that, in 9.1.0 and earlier, allows a malicious EPUB to cause arbitrary files writable by the Calibre process to be corrupted by resolving CipherReference URIs from META-INF/encryption.xml to absolute paths outside the ext...
CVE-2026-25636 calibre has a Path Traversal Leading to Arbitrary File Corruption and Code Execution
calibre is an e-book manager. In 9.1.0 and earlier, a path traversal vulnerability in Calibre's EPUB conversion allows a malicious EPUB file to corrupt arbitrary existing files writable by the Calibre process. During conversion, Calibre resolves CipherReference URI from META-INF/encryption.xml to...
CVE-2026-25636 calibre has a Path Traversal Leading to Arbitrary File Corruption and Code Execution
calibre is an e-book manager. In 9.1.0 and earlier, a path traversal vulnerability in Calibre's EPUB conversion allows a malicious EPUB file to corrupt arbitrary existing files writable by the Calibre process. During conversion, Calibre resolves CipherReference URI from META-INF/encryption.xml to...
CVE-2025-5296
CWE-59: Improper Link Resolution Before File Access 'Link Following' vulnerability exists that could cause arbitrary data to be written to protected locations, potentially leading to escalation of privilege, arbitrary file corruption, exposure of application and system information or persistent...
Cisco SD-WAN Software Arbitrary File Corruption (cisco-sa-sdwan-privesc-cli-xkGwmqKu)
According to its self-reported version, Cisco SD-WAN Viptela Software is affected by a vulnerability. - A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite and possibly corrupt files on an affected system. This vulnerability is due to...
GHSA-RFJ2-Q3H3-HM5J Cargo extracting malicious crates can corrupt arbitrary files
The Rust Security Response WG was notified that Cargo did not prevent extracting some malformed packages downloaded from alternate registries. An attacker able to upload packages to an alternate registry could corrupt arbitary files when Cargo downloaded the package. The severity of this...
Cisco SD-WAN Software Arbitrary File Corruption (cisco-sa-sdwan-arbfile-7Qhd9mCn)
According to its self-reported version, Cisco SD-WAN Viptela Software is affected by an arbitrary file corruption vulnerability. A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system of an affect...
CVE-2021-1512 Cisco SD-WAN Software Arbitrary File Corruption Vulnerability
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system of an affected system. This vulnerability is due to insufficient validation of the user-supplied input parameters of a specific CLI command. ...
Cisco SD-WAN Software Arbitrary File Corruption Vulnerability
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying file system of an affected system. This vulnerability is due to insufficient validation of the user-supplied input parameters of a specific CLI command. ...
CVE-2020-25044
Kaspersky Virus Removal Tool KVRT prior to 15.0.23.0 was vulnerable to arbitrary file corruption that could provide an attacker with the opportunity to eliminate content of any file in the system...
CVE-2020-25044
Kaspersky Virus Removal Tool KVRT prior to 15.0.23.0 was vulnerable to arbitrary file corruption that could provide an attacker with the opportunity to eliminate content of any file in the system...
CVE-2020-0697
CVE-2020-0697 is a Microsoft Office elevation-of-privilege flaw affecting the OLicenseHeartbeat task. An authenticated attacker could place a specially crafted file in a specific location to run the task with SYSTEM privileges, enabling arbitrary file corruption. The vulnerability is addressed by...
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
No description provided by source. +------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker |...
Oracle Application Server 9i Webcache Arbitrary File Corruption Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13420/info Oracle Application Server 9i Webcache is prone to an arbitrary file corruption vulnerability. The issue exists becaue dangerous characters are not removed from a certain parameter value, allowing an attacker to...
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
+------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker | +-----------+---------------------+ Author : xhaxkerx Speci...
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
No description provided by source. +------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker |...
FuzzyLime CMS 3.03a Local File Inclusion
+------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker | +-----------+---------------------+ | mail:...
Fuzzylime CMS 3.03a - Local Inclusion Arbitrary File Corruption
Fuzzylime CMS 3.03a - Local Inclusion Arbitrary File Corruption +------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by stak...
Fuzzylime CMS 3.03a - Local Inclusion / Arbitrary File Corruption
+------------------------------------------------------------------------+ | fuzzylime cms = 3.03a local inclusion / arbitrary file corruption poc | +-----------+------------------------------------------------------------+ | by staker | +-----------+---------------------+ | mail:...
fuzzylime cms <= 3.03a Local Inclusion / Arbitrary File Corruption PoC
Exploit for unknown platform in category web applications ====================================================================== fuzzylime cms = 3.03a Local Inclusion / Arbitrary File Corruption PoC ======================================================================...