Lucene search
+L

4 matches found

NVD
NVD
added 2026/06/10 6:17 p.m.28 views

CVE-2026-46612

Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.23.0, the Fission storagesvc component registers archive CRUD handlers /v1/archive GET / POST / DELETE and /v1/archives list directly on...

8.8CVSS0.00344EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-34363

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The thefuck aka The Fuck package before 3.31 for Python allows Path Traversal that leads to arbitrary file deletion via the undo archive operation feature...

9.1CVSS7AI score0.01847EPSS
Exploits0References2
PyPA
PyPA
added 2023/12/22 9:15 p.m.7 views

PYSEC-2023-279

MindsDB is a SQL Server for artificial intelligence. Prior to version 23.11.4.1, the put method in mindsdb/mindsdb/api/http/namespaces/file.py does not validate the user-controlled name value, which is used in a temporary file name, which is afterwards opened for writing on lines 122-125, which...

9.1CVSS7.8AI score0.00992EPSS
Exploits1References5Affected Software1
Veracode
Veracode
added 2021/06/11 8:50 a.m.24 views

Path Traversal

thefuck is vulnerable to path traversal. Using "undo archive operation" feature allows deletion of arbitrary file outside of working directory...

9.1CVSS4.6AI score0.01847EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder