9 matches found
SUSE CVE-2026-39860
Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...
CVE-2026-29870
A directory traversal vulnerability in the agentic-context-engine project versions up to 0.7.1 allows arbitrary file writes via the checkpointdir parameter in OfflineACE.run. The savetofile method in ace/skillbook.py fails to normalize or validate filesystem paths, allowing traversal sequences to...
PT-2026-5975
Name of the Vulnerable Software and Affected Versions Comic Book Reader version 1.0.95 Description A flaw exists in the file import process of Comic Book Reader that allows for arbitrary file overwrites. Successful exploitation could lead to arbitrary code execution or the disclosure of sensitive...
CVE-2025-55214 Copier safe template has filesystem write access outside destination path
Copier library and CLI app for rendering project templates. From 7.1.0 to before 9.9.1, Copier suggests that it's safe to generate a project from a safe template, i.e. one that doesn't use unsafe features like custom Jinja extensions which would require passing the --UNSAFE,--trust flag. As it...
Vim 路径遍历漏洞
Vim is a cross-platform text editor from the Vim open source. A path traversal vulnerability exists in versions prior to Vim 9.1.1552, which stems from a path traversal issue in the tar.vim plugin that could lead to arbitrary file overwrites...
ONNX 安全漏洞
ONNX Open Neural Network Exchange is an open standard for machine learning interoperability open-sourced by ONNX. A security vulnerability exists in ONNX 1.16.1 and earlier versions, which stems from a path traversal attack that could lead to arbitrary file overwrites...
Acronis多款产品 安全漏洞
Acronis Backup plugin for cPanel & WHM Linux, etc. is a plugin from Acronis Switzerland. A security vulnerability exists in various Acronis products that stems from improper handling of symbolic links, resulting in arbitrary file overwrites during recovery. The following products and versions are...
Microsoft Word 2000/2003 Unchecked Boundary Condition Vulnerability
No description provided by source. /------------------------------------------------------------ Microsoft Word unchecked boundary condition vulnerability. --------------------------------------------------------- One of the functions in mso.dll older versions mso9.dll...
Microsoft Word 2000/2003 Unchecked Boundary Condition Vulnerability
Exploit for unknown platform in category dos / poc =================================================================== Microsoft Word 2000/2003 Unchecked Boundary Condition Vulnerability ===================================================================...