CVE-2026-54230

CVE-2026-54230 describes a symlink-following vulnerability in ABRT’s libreport post-create event handler scripts. The scripts write output via shell redirections without O_NOFOLLOW, so if a target file is replaced with a symlink, a root process can overwrite arbitrary files on the system. This is...

SUSE CVE-2026-39860

Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by the Nix process orchestrating the builds typically the Nix daemon running as root in multi-user installations by following symlinks during...

CVE-2026-29870

A directory traversal vulnerability in the agentic-context-engine project versions up to 0.7.1 allows arbitrary file writes via the checkpointdir parameter in OfflineACE.run. The savetofile method in ace/skillbook.py fails to normalize or validate filesystem paths, allowing traversal sequences to...

PT-2026-5975

Name of the Vulnerable Software and Affected Versions Comic Book Reader version 1.0.95 Description A flaw exists in the file import process of Comic Book Reader that allows for arbitrary file overwrites. Successful exploitation could lead to arbitrary code execution or the disclosure of sensitive...

CVE-2025-55214 Copier safe template has filesystem write access outside destination path

Copier library and CLI app for rendering project templates. From 7.1.0 to before 9.9.1, Copier suggests that it's safe to generate a project from a safe template, i.e. one that doesn't use unsafe features like custom Jinja extensions which would require passing the --UNSAFE,--trust flag. As it...

Vim 路径遍历漏洞

Vim is a cross-platform text editor from the Vim open source. A path traversal vulnerability exists in versions prior to Vim 9.1.1552, which stems from a path traversal issue in the tar.vim plugin that could lead to arbitrary file overwrites...

ONNX 安全漏洞

ONNX Open Neural Network Exchange is an open standard for machine learning interoperability open-sourced by ONNX. A security vulnerability exists in ONNX 1.16.1 and earlier versions, which stems from a path traversal attack that could lead to arbitrary file overwrites...

Acronis多款产品 安全漏洞

Acronis Backup plugin for cPanel & WHM Linux, etc. is a plugin from Acronis Switzerland. A security vulnerability exists in various Acronis products that stems from improper handling of symbolic links, resulting in arbitrary file overwrites during recovery. The following products and versions are...

Microsoft Word 2000/2003 Unchecked Boundary Condition Vulnerability

No description provided by source. /------------------------------------------------------------ Microsoft Word unchecked boundary condition vulnerability. --------------------------------------------------------- One of the functions in mso.dll older versions mso9.dll...

Microsoft Word 2000/2003 Unchecked Boundary Condition Vulnerability

Exploit for unknown platform in category dos / poc =================================================================== Microsoft Word 2000/2003 Unchecked Boundary Condition Vulnerability ===================================================================...