298 matches found
Joomla! Component Jstore - 'Controller' Local File Inclusion
A directory traversal vulnerability in Jstore comjstore component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. dot dot in the controller parameter to index.php. id: CVE-2010-5286 info: name: Joomla! Component Jstore - 'Controller...
CVE-2026-45017
CVE-2026-45017 affects the Python Liquid engine. Before 2.2.0, FileSystemLoader and CachingFileSystemLoader fail to guard against reading files outside the search path when given absolute paths, enabling a malicious template author to load and render arbitrary files via {% include %} and {% rende...
Flarum 路径遍历漏洞
Flarum is an open-source forum software developed by Flarum for building communities. Versions of Flarum prior to 1.8.16 and 2.0.0-rc.1 contained a path traversal vulnerability. This vulnerability stemmed from the lack of restrictions on the values of LESS configuration variables, which could lea...
SUSE CVE-2026-33206
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, a path traversal vulnerability exists in Calibre' handling of images in Markdown and other similar text-based files allowing an attacker to include arbitrary files from the...
DEBIAN-CVE-2026-33206
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, a path traversal vulnerability exists in Calibre' handling of images in Markdown and other similar text-based files allowing an attacker to include arbitrary files from the...
UBUNTU-CVE-2026-33206
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.6.0, a path traversal vulnerability exists in Calibre' handling of images in Markdown and other similar text-based files allowing an attacker to include arbitrary files from the...
CVE-2026-27383
CVE-2026-27383 affects RadiusTheme Metro WordPress theme (
CVE-2026-2448
The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.33.5 via the locatetemplate function. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary fil...
MiracleLinux 7 : php-5.4.16-48.0.2.el7.AXS7 (AXSA:2024-8986:03)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8986:03 advisory. CVE-2024-8927: Fix bypass of cgi.forceredirect configuration CVE-2024-8927 In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12,...
CVE-2024-2385
The Elementor Addons by Livemesh plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 8.4 via several of the plugin's widgets through the 'style' attribute. This makes it possible for authenticated attackers, with contributor-level access and above, to...
EUVD-2006-1118
Malware in sbrugna...
EUVD-2005-3299
Malware in sbrugna...
EUVD-2009-1316
Malware in sbrugna...
EUVD-2006-1603
Malware in sbrugna...
EUVD-2006-0632
Malware in sbrugna...
EUVD-2021-11963
Malware in sbrugna...
EUVD-2007-4012
Malware in sbrugna...
EUVD-2001-1033
Malware in sbrugna...
EUVD-2008-0664
Malware in sbrugna...
EUVD-2009-2216
Malware in sbrugna...