USN-8221-1: wheel vulnerability

It was discovered that wheel did not correctly handle certain file paths. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to execute arbitrary code...

EUVD-2018-21776

Iperius Backup 5.8.1 contains a local buffer overflow vulnerability in the structured exception handling SEH mechanism that allows local attackers to execute arbitrary code by supplying a malicious file path. Attackers can create a backup job with a crafted payload in the external file location...

CVE-2018-25261

CVE-2018-25261 concerns Iperius Backup 5.8.1, which contains a local buffer overflow in the structured exception handling (SEH) mechanism. A crafted file path in an external file location field during a backup job can trigger the overflow, enabling code execution with the application’s privileges...

CVE-2018-25261 Iperius Backup 5.8.1 Local Buffer Overflow SEH

Iperius Backup 5.8.1 contains a local buffer overflow vulnerability in the structured exception handling SEH mechanism that allows local attackers to execute arbitrary code by supplying a malicious file path. Attackers can create a backup job with a crafted payload in the external file location...

CVE-2024-41285

A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service DoS via a crafted file path...

CVE-2025-63889

Summary: CVE-2025-63889 affects ThinkPHP 5.0.24, where the fetch function in thinkphp/library/think/Template.php can read arbitrary files via a crafted file path supplied in a template value. Affected component: ThinkPHP 5.0.24, Template.php fetch logic. Impact (as stated): Local/file-read capabi...

PT-2025-46820

Name of the Vulnerable Software and Affected Versions pgAdmin 4 versions up to 9.9 Description pgAdmin 4 versions up to 9.9 on Windows systems are susceptible to a command injection issue. The root cause is the use of shell=True during backup and restore operations. This allows attackers to execu...

redis: Redis Stack Buffer Overflow

A flaw was found in Redis. Using memcpy with the strlen filepath when copying a user-supplied file path into a fixed-size stack buffer in redis-check-aof results in a stack-based buffer overflow. This flaw allows a local attacker to trigger the overflow by providing a specially crafted file path,...

CVE-2024-41285

A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service DoS via a crafted file path...

CVE-2024-41285

Summary: CVE-2024-41285 affects FAST FW300R (v1.3.13 Build 141023 Rel.61347n). A stack overflow in the vulnerable path handling could allow an attacker to execute arbitrary code or cause a DoS. The CVE is rated critical (CVSS v3.1: 9.8) with network access, no user interaction required. Affected ...

CVE-2024-41285

A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service DoS via a crafted file path...

FAST FW300R 安全漏洞

FAST FW300R is a wireless router from the Chinese company FAST. A security vulnerability exists in FAST FW300R v1.3.13, which stems from the presence of a stack overflow that could allow an attacker to execute arbitrary code or cause a denial of service DoS via a crafted file path...

CVE-2024-41285

A stack overflow in FAST FW300R v1.3.13 Build 141023 Rel.61347n allows attackers to execute arbitrary code or cause a Denial of Service DoS via a crafted file path...

CVE-2024-2563

A vulnerability has been found in PandaXGO PandaX up to 20240310 and classified as critical. This vulnerability affects the function DeleteImage of the file /apps/system/router/upload.go. The manipulation of the argument fileName with the input ../../../../../../../../../tmp/1.txt leads to path...

Directory Traversal

mlflow is vulnerable to Directory Traversal. The vulnerability exists in the validatepathissafe function within uri.py which allows an attacker to read or write to files outside of the restricted directory using a crafted file path...

CVE-2022-27201

Jenkins Semantic Versioning Plugin 1.13 and earlier does not restrict execution of an controller/agent message to agents, and implements no limitations about the file path that can be parsed, allowing attackers able to control agent processes to have Jenkins parse a crafted file that uses externa...

Synology DiskStation Manager 缓冲区错误漏洞

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. A security vulnerability exists in faad in Synology DiskStation Manager...

Huawei OSD Elevation of Privilege Vulnerability

Huawei ODS is an object-based storage device from Huawei, China. An elevation of privilege vulnerability exists in Huawei OSD OSDuwp9.0.32.0 and earlier versions, which can be exploited by a local attacker to elevate privileges by constructing a specific file path...

CVE-2020-9072

Huawei OSD product with versions earlier than OSDuwp9.0.32.0 have a local privilege escalation vulnerability. An authenticated, local attacker can constructs a specific file path to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege...

CVE-2018-7158

It was found that the 'path' module from Node.js was vulnerable to a Regular Expression Denial of Service REDoS flaw. An attacker able to provide a specially crafted file path to a Node.js script could force it to hang indefinitely...