Lucene search
K

7 matches found

Vulnrichment
Vulnrichment
added 2026/06/11 3:42 p.m.9 views

CVE-2026-44705 tmp: Path Traversal via unsanitized prefix/postfix enables directory escape

tmp is a temporary file and directory creator for node.js. Prior to 0.2.6, the tmp npm package contains a path traversal vulnerability that allows escaping the intended temporary directory when untrusted data flows into the prefix, postfix, or dir options. By embedding traversal sequences e.g., ....

8.7CVSS5.3AI score0.00354EPSS
Exploits1References1
Prion
Prion
added 2018/10/09 1:29 p.m.17 views

Input validation

Improper input validation in obs-service-tarscm of Open Build Service allows remote attackers to cause access and extract information outside the current build or cause the creation of file in attacker controlled locations. Affected releases are openSUSE Open Build Service: versions prior to...

7.5CVSS9.2AI score0.01363EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2018/10/09 1:0 p.m.28 views

CVE-2018-12474 Crafted service parameters allows to induce unexpected behaviour in obs-service-tar_scm

Improper input validation in obs-service-tarscm of Open Build Service allows remote attackers to cause access and extract information outside the current build or cause the creation of file in attacker controlled locations. Affected releases are openSUSE Open Build Service: versions prior to...

5.4CVSS8.6AI score0.01363EPSS
Exploits0References2
NVD
NVD
added 2018/07/31 8:29 p.m.17 views

CVE-2018-14280

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS8.8AI score0.02773EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2018/07/19 12:0 a.m.25 views

Foxit Reader exportAsFDF Arbitrary File Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the exportAsFDF XFA...

7.5CVSS2.5AI score0.02773EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2018/07/19 12:0 a.m.22 views

Foxit Reader exportData Arbitrary File Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the exportData XFA...

7.5CVSS2.5AI score0.02773EPSS
Exploits0References1
OSV
OSV
added 2017/08/29 1:29 p.m.4 views

CVE-2017-10952

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.0.2051. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the save...

8.8CVSS6.2AI score0.07152EPSS
Exploits2References4
Rows per page
Query Builder