Lucene search
+L

22 matches found

nvd
nvd
added 2026/07/06 9:16 p.m.12 views

CVE-2026-57571

Crawl4AI is an open-source LLM-friendly web crawler and scraper. Prior to 0.9.0, when the crawler saves a downloaded file, the destination filename was taken from attacker-influenced input and joined to the downloads directory with no confinement. A filename containing an absolute path or travers...

9.6CVSS0.00502EPSS
Exploits1References2
attackerkb
attackerkb
added 2026/07/06 8:9 p.m.6 views

CVE-2026-57571

Crawl4AI is an open-source LLM-friendly web crawler and scraper. Prior to 0.9.0, when the crawler saves a downloaded file, the destination filename was taken from attacker-influenced input and joined to the downloads directory with no confinement. A filename containing an absolute path or travers...

9.6CVSS6.4AI score0.00502EPSS
Exploits1References3Affected Software1
ptsecurity
ptsecurity
added 2026/06/18 12:0 a.m.16 views

PT-2026-56002

Name of the Vulnerable Software and Affected Versions Crawl4AI versions prior to 0.9.0 Description An issue exists when the crawler saves downloaded files, as the destination filename is derived from attacker-influenced input and joined to the downloads directory without proper confinement. This...

9.6CVSS6.5AI score0.00502EPSS
Exploits1References9
ptsecurity
ptsecurity
added 2026/06/08 12:0 a.m.16 views

PT-2026-47333

Improper Neutralization of CRLF Sequences 'CRLF Injection' vulnerability in wojtekmach Req allows multipart parameter smuggling via attacker-influenced part metadata. Req.Utils.encode form part/2 in lib/req/utils.ex builds the per-part headers by interpolating the caller-supplied name, filename,...

2.1CVSS5.6AI score0.00178EPSS
Exploits0References5
euvd
euvd
added 2026/05/27 2:42 p.m.13 views

EUVD-2026-32534

GuardDog is a CLI tool to identify malicious PyPI packages. From 2.6.0 to 2.9.0, GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject...

5CVSS5.9AI score0.00113EPSS
Exploits0References1
veracode
veracode
added 2026/05/16 5:29 a.m.9 views

OS Command Injection

File Browser is vulnerable to OS command injection. The vulnerability is due to unsanitized variable substitution in the hook system, where attacker-controlled filenames containing shell metacharacters are expanded into administrator-defined shell commands, allowing attackers to execute arbitrary...

7.5CVSS6.2AI score0.01922EPSS
Exploits2References3Affected Software2
osv
osv
added 2026/05/11 2:43 p.m.8 views

GHSA-M5P4-GVPX-4MVR GuardDog: Unsanitized human-readable scan output allows terminal escape injection from malicious package content

Summary GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject ANSI or OSC escape sequences into analyst terminals or CI logs...

5CVSS5.8AI score0.00113EPSS
Exploits0References3
github
github
added 2026/05/11 2:43 p.m.18 views

GuardDog: Unsanitized human-readable scan output allows terminal escape injection from malicious package content

Summary GuardDog includes attacker-controlled filenames, file locations, messages, and code snippets in its default human-readable output without escaping terminal control characters. A malicious package can therefore inject ANSI or OSC escape sequences into analyst terminals or CI logs...

5CVSS5.8AI score0.00113EPSS
Exploits0References3Affected Software1
cnnvd
cnnvd
added 2026/01/08 12:0 a.m.6 views

Smb4K 安全漏洞

Smb4K is a KDE open source online neighborhood browser. A security vulnerability exists in Smb4K versions prior to 4.0.5 that originates from external control of filenames or paths and could lead to a local user performing a local root attack...

7.3CVSS6.1AI score0.00111EPSS
Exploits0References3
nvd
nvd
added 2025/11/26 1:16 a.m.7 views

CVE-2025-66258

Stored Cross-Site Scripting via XML Injection in DB Electronica Telecomunicazioni S.p.A. Mozart FM Transmitter versions 30, 50, 100, 300, 500, 1000, 2000, 3000, 3500, 6000, 7000 allows an attacker to perform Stored XSS via crafted filenames injected into patchlist.xml. User-controlled filenames a...

7.1CVSS0.00167EPSS
Exploits1References1
veracode
veracode
added 2025/08/11 9:25 a.m.7 views

Command Injection

codeigniter4/framework is vulnerable to Command Injection. The vulnerability is due to improper handling of user-controlled filenames and text content when using the ImageMagick imagick handler in the resize or text methods, which allows an attacker to execute arbitrary shell commands by supplyin...

9.8CVSS7.9AI score0.01508EPSS
Exploits0References6Affected Software1
nvd
nvd
added 2025/07/28 3:15 p.m.9 views

CVE-2025-54418

CodeIgniter is a PHP full-stack web framework. A command injection vulnerability present in versions prior to 4.6.2 affects applications that use the ImageMagick handler for image processing imagick as the image library and either allow file uploads with user-controlled filenames and process...

9.8CVSS0.01508EPSS
Exploits0References4
cnnvd
cnnvd
added 2024/09/25 12:0 a.m.3 views

Olgu Computer Systems e-Belediye 安全漏洞

Olgu Computer Systems e-Belediye is an application from Olgu Computer Systems. A security vulnerability exists in Olgu Computer Systems e-Belediye prior to version 2.0.642, which arises from incorrect privilege assignment of externally controlled filenames or paths, and allows manipulation of Web...

9.8CVSS6.6AI score0.00422EPSS
Exploits0References2
redhat
redhat
added 2024/07/08 11:44 a.m.4 views

less: OS command injection

An OS command injection flaw was found in Less. Since quoting is mishandled in filename.c, opening files with attacker-controlled file names can lead to OS command execution. Exploitation requires the LESSOPEN environment variable, which is set by default in many common cases...

8.6CVSS6.8AI score0.00628EPSS
Exploits0References6
amazon
amazon
added 2024/05/30 12:0 a.m.8 views

Important: less

Issue Overview: less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation als...

8.6CVSS7.2AI score0.00628EPSS
Exploits0
osv
osv
added 2024/05/17 11:8 a.m.5 views

OESA-2024-1587 less security update

Less is a pager. A pager is a program that displays text files. Other pagers commonly in use are more and pg. Pagers are often used in command-line environments like the Unix shell and the MS-DOS command prompt to display files. Security Fixes: less through 653 allows OS command execution via a...

8.6CVSS7.2AI score0.00628EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/01/16 12:0 a.m.7 views

PT-2024-14932 · Hypr · Hypr Workforce Access

Name of the Vulnerable Software and Affected Versions: HYPR Workforce Access versions prior to 8.7 Description: The issue is related to an Improper Link Resolution Before File Access, also known as 'Link Following', which allows user-controlled filename. This can potentially lead to unauthorized...

7.8CVSS7.4AI score0.0017EPSS
Exploits0References4
nessus
nessus
added 2024/01/13 12:0 a.m.17 views

Fedora 38 : rubygem-httparty (2024-a5aad4eede)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-a5aad4eede advisory. Fix CVE-2024-22049 httparty: multipart/form-data request vulnerable to tampering Tenable has extracted the preceding description block directly from...

5.3CVSS5.8AI score0.0129EPSS
Exploits1References2
debiancve
debiancve
added 2024/01/04 8:19 p.m.27 views

CVE-2024-22049

httparty before 0.21.0 is vulnerable to an assumed-immutable web parameter vulnerability. A remote and unauthenticated attacker can provide a crafted filename parameter during multipart/form-data uploads which could result in attacker controlled filenames being written...

5.3CVSS5.2AI score0.0129EPSS
Exploits1
veracode
veracode
added 2023/04/27 11:2 a.m.25 views

Remote Code Execution (RCE)

broccoli-compass is vulnerable to Remote Code Execution RCE. Lack of proper checking of attacker-controlled filenames which is included in the list of files passed to the library via its files option, allows an attacker to execute malicious code on the system...

9.8CVSS9.5AI score0.01859EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder