CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

754 matches found

RedhatCVE•added 2026/01/09 11:13 a.m.•3 views

CVE-2016-10771

cPanel before 60.0.25 allows file-create and file-chmod operations during ModSecurity Audit logfile processing SEC-165...

8.1CVSS6.9AI score0.00357EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:10 a.m.•5 views

CVE-2016-10846

cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube database conversions SEC-79...

8.5CVSS7.1AI score0.00427EPSS

Exploits0References1

Positive Technologies•added 2026/01/01 12:0 a.m.•5 views

PT-2026-28320

Name of the Vulnerable Software and Affected Versions Node.js versions 20.x through 25.x Description An incomplete fix allows bypassing of intended write restrictions when using the Permission Model with restricted --allow-fs-write. Specifically, the FileHandle.chmod and FileHandle.chown methods...

3.3CVSS6.4AI score0.00005EPSS

Exploits0References103

Positive Technologies•added 2026/01/01 12:0 a.m.•2 views

PT-2026-28319

Name of the Vulnerable Software and Affected Versions Node.js versions 20.x through 25.x Description A flaw exists in the Node.js Permission Model's filesystem enforcement, specifically leaving the fs.realpathSync.native function without the necessary read permission checks. Comparable filesystem...

5.9CVSS6.3AI score0.00012EPSS

Exploits0References102

Packet Storm•added 2025/12/12 12:0 a.m.•117 views

📄 Desktop XDG 1.0 Code Execution

This proof of concept generates a malicious file that allows for arbitrary code execution in Desktop XDG version 1.0. ============================================================================================================================================= | Title : Desktop XDG v1.0 Malicious...

7.9AI score

Exploits0

Hacker One•added 2025/12/03 12:21 a.m.•7 views

Node.js: CVE-2024-36137 Patch Bypass - FileHandle.chmod/chown

Vulnerability description not provided...

3.3CVSS6.6AI score0.00095EPSS

Exploits0

Metasploit•added 2025/11/25 6:58 p.m.•302 views

Linux Chmod

Runs chmod on the specified file with specified mode. Module Options msf use payload/linux/riscv64le/chmod msf payloadchmod show actions ...actions... msf payloadchmod set ACTION msf payloadchmod show options ...show and set options... msf payloadchmod run This module requires Metasploit:...

5.8AI score

Exploits0

Metasploit•added 2025/11/25 6:58 p.m.•328 views

Linux Chmod

Runs chmod on the specified file with specified mode. Module Options msf use payload/linux/riscv32le/chmod msf payloadchmod show actions ...actions... msf payloadchmod set ACTION msf payloadchmod show options ...show and set options... msf payloadchmod run This module requires Metasploit:...

5.8AI score

Exploits0

OSV•added 2025/11/10 6:51 p.m.•2 views

CLSA-2025-1762800667 Fix CVE(s): CVE-2021-44038

SECURITY UPDATE: Unsafe chown/chmod operations in .service files - debian/patches/CVE-2021-44038.patch: remove chown/chmod commands from the .service files - CVE-2021-44038...

7.8CVSS7.1AI score0.00195EPSS

Exploits1References1

SUSE CVE•added 2025/11/08 12:32 a.m.•4 views

SUSE CVE-2024-25621

containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.0 through 2.2.0-rc.1 have an overly broad default permission vulnerability. Directory paths /var/lib/containerd,...

7.3CVSS6.8AI score0.00005EPSS

Exploits1References7

OSV•added 2025/11/07 5:42 p.m.•4 views

CLSA-2025-1762537354 cups: Fix of CVE-2024-35235

CVE-2024-35235: patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...

6.7CVSS5.9AI score0.03102EPSS

Exploits1References1

OSV•added 2025/11/07 5:38 p.m.•2 views

CLSA-2025-1762537123 cups: Fix of CVE-2024-35235

CVE-2024-35235: patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...

6.7CVSS5.9AI score0.03102EPSS

Exploits1References1