20 matches found
File Browser: FilePath traversal in download-as-zip/tar via Windows-style backslash separators in stored filenames
Summary filebrowser builds the download-as-zip / download-as-tar archive entry names with filepath.ToSlash, which on a Linux host is a no-op for backslashes \ is only a path separator on Windows. A file whose name contains Windows-style traversal ......\evil.txt is accepted by the resource...
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal in the gettemplate function on Windows systems due to improper normalization of backslash characters in URIs. An attacker can access and read files outside the intended template directory by supplying specially craft...
CVE-2026-35377 uutils coreutils env Local Denial of Service via Improper Handling of Backslashes in Split-String Mode
A logic error in the env utility of uutils coreutils causes a failure to correctly parse command-line arguments when utilizing the -S split-string option. In GNU env, backslashes within single quotes are treated literally with the exceptions of \ and '. However, the uutils implementation...
CVE-2026-35377 uutils coreutils env Local Denial of Service via Improper Handling of Backslashes in Split-String Mode
A logic error in the env utility of uutils coreutils causes a failure to correctly parse command-line arguments when utilizing the -S split-string option. In GNU env, backslashes within single quotes are treated literally with the exceptions of \ and '. However, the uutils implementation...
USN-8151-1: lambdaisland/uri vulnerability
It was discovered that lambdaisland/uri did not properly sanitize the backslash character in URI strings. An attacker could possibly use this issue to bypass security checks or redirect users...
vLLM has SSRF Protection Bypass
Summary The SSRF protection fix for https://github.com/vllm-project/vllm/security/advisories/GHSA-qh4c-xf7m-gxfc can be bypassed in the loadfromurlasync method due to inconsistent URL parsing behavior between the validation layer and the actual HTTP client. Affected Component - File:...
CVE-2026-28348
lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.4, the hassneakyjavascript method strips backslashes before checking for dangerous CSS keywords. This causes CSS Unicode escape sequences to bypass the @import and expression filters,...
Fiber has an Arbitrary File Read in Static Middleware on Windows
Summary Description A Path Traversal CWE-22 vulnerability in Fiber allows a remote attacker to bypass the static middleware sanitizer and read arbitrary files on the server file system on Windows. This affects Fiber v3 through version 3.0.0. This has been patched in Fiber v3 version 3.1.0. Detail...
UBUNTU-CVE-2026-27585
Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, the path sanitization routine in file matcher doesn't sanitize backslashes which can lead to bypassing path related security protections. It affects users with specific Caddy and environment configurations...
Caddy 输入验证错误漏洞
Caddy is an open-source, cross-platform HTTP/Web server developed by the Caddy company. Versions of Caddy prior to 2.11.1 contained a vulnerability related to input validation errors. This vulnerability stemmed from the path cleaner in the file matcher not clearing backslashes properly, which cou...
Echo 路径遍历漏洞
Echo is a set of open-source community systems developed by Veal98, where the front-end and back-end are not separated. Versions 5.0.0 to 5.0.2 of Echo have a path traversal vulnerability. This vulnerability arises from improper handling of backslashes by the middleware.Static on Windows systems,...
chi has an open redirect vulnerability in the RedirectSlashes middleware
Summary The RedirectSlashes function in middleware/strip.go does not perform correct input validation and can lead to an open redirect vulnerability. Details The RedirectSlashes function performs a Trim to all forward slash / characters, while prepending a single one at the begining of the path...
EUVD-2021-0686
Malware in sbrugna...
CLSA-2025-1758743212 cups: Fix of CVE-2023-4504
CVE-2023-4504: check for null terminator after a backslash...
CVE-2024-7592
...
The vulnerability of the web application function of Moxa SDS-3008 microprogrammable Ethernet switches allows a intruder to gain unauthorized access to protected information.
The vulnerability of the web application function of Moxa SDS-3008 Ethernet switch software lies in the insufficient protection of service data when processing URL addresses containing the “/” or “\” character. Exploiting this vulnerability can allow an attacker to gain unauthorized access to...
URI.js Security Vulnerability
Medialize URI.js is a Javascript-based code library from the Medialize team that can be used to efficiently splice URLs. A security vulnerability exists in URI.js before 1.19.6 that stems from incorrect handling of certain uses of backslashes e.g., http: / and interpreting URIs as relative paths...
PT-2019-11190 · Apache · Tapestry
Name of the Vulnerable Software and Affected Versions: Tapestry affected versions not specified Description: The issue concerns a path traversal attack. Specifically, Tapestry processes assets using the /assets/ctx endpoint, which is handled by a chain of classes: StaticFilesFilter -...
PT-2019-12164 · Postgresql · Sequelize
Name of the Vulnerable Software and Affected Versions: Sequelize versions prior to 5.3.0 Description: The issue arises from the improper handling of backslashes in string literals, potentially allowing attackers to inject SQL statements. This is due to the PostgreSQL option standard conforming...
DEBIAN-CVE-2010-2785
The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \ backslash characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \r and \40 sequences, a different vulnerability than CVE-2010-2451 and CVE-2010-2452...