Lucene search
K

137 matches found

NVD
NVD
added 2026/07/01 3:17 p.m.9 views

CVE-2026-23537

A vulnerability has been identified in the Feast Feature Server’s /save-document endpoint that allows an unauthenticated remote attacker to write arbitrary JSON files to the server's filesystem. Although the system attempts to restrict file locations, these protections can be bypassed, enabling a...

9.1CVSS0.00568EPSS
Exploits0References4
CVE
CVE
added 2026/06/29 2:34 p.m.124 views

CVE-2026-49049

The CVE-2026-49049 entry concerns the Helix3 Joomla extension by joomshaper. The vulnerability arises from an exposed ajax handler task within Helix3 that allows unauthenticated attackers to delete arbitrary files, write arbitrary JSON files, and update template parameters. This indicates a remot...

7.5CVSS5.9AI score0.00228EPSS
Exploits4References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/26 4:38 p.m.8 views

CVE-2026-45728

Algernon is a small self-contained pure-Go web server. Prior to 1.17.7, when Algernon is invoked with a single file path instead of a directory, singleFileMode is set to true and debugMode is forcibly enabled. debugMode activates the PrettyError renderer, which on any Lua or template error respon...

7.5CVSS5.8AI score0.00303EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/14 2:21 a.m.10 views

CVE-2026-6832

Hermes WebUI contains an arbitrary file deletion vulnerability in the /api/session/delete endpoint that allows authenticated attackers to delete files outside the session directory by supplying an absolute path or path traversal payload in the sessionid parameter. Attackers can exploit unvalidate...

8.1CVSS5.9AI score0.00475EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/08 7:54 p.m.85 views

CVE-2026-7807 SmarterTools SmarterMail < Build 9560 Server Local File Inclusion via the /api/v1/report/summary/{type} API

SmarterTools SmarterMail builds prior to 9560 contain a local file inclusion vulnerability in the /api/v1/report/summary/type API endpoint that allows authenticated users to read arbitrary .json files on the system. Attackers can exploit this vulnerability combined with weak encryption algorithms...

8.7CVSS0.00296EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.13 views

melange 路径遍历漏洞

Melange is a software developed by Chainguard for building APKs from source code. Versions of Melange from 0.32.0 to 0.43.4 had a path traversal vulnerability. This vulnerability stemmed from insufficient validation of the arch and pkgname parameters, allowing attackers to write arbitrary JSON...

4.4CVSS5.9AI score0.00172EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/22 12:31 a.m.7 views

EUVD-2026-24517

Hermes WebUI contains an arbitrary file deletion vulnerability in the /api/session/delete endpoint that allows authenticated attackers to delete files outside the session directory by supplying an absolute path or path traversal payload in the sessionid parameter. Attackers can exploit unvalidate...

8.1CVSS5.9AI score0.00475EPSS
Exploits1References7
OSV
OSV
added 2026/04/16 10:54 p.m.3 views

CVE-2026-40318 SiYuan: Publish Reader Path Traversal Delete via `removeUnusedAttributeView`

SiYuan is an open-source personal knowledge management system. In versions 3.6.3 and prior, the /api/av/removeUnusedAttributeView endpoint constructs a filesystem path using the user-controlled id parameter without validation or path boundary enforcement. An attacker can inject path traversal...

8.5CVSS6AI score0.00287EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/06 6:33 p.m.4 views

EUVD-2025-209230

Memory corruption when decoding corrupted satellite data files with invalid signature offsets...

8.8CVSS5.9AI score0.00165EPSS
Exploits0References2
NVD
NVD
added 2026/04/06 4:16 p.m.5 views

CVE-2025-47392

Memory corruption when decoding corrupted satellite data files with invalid signature offsets...

8.8CVSS0.00165EPSS
Exploits0References1
NVD
NVD
added 2026/04/02 6:16 p.m.7 views

CVE-2026-34524

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to version 1.17.0, a path traversal vulnerability in chat endpoints allows an authenticated attacker to read...

8.8CVSS0.0057EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/31 10:34 p.m.3 views

UNIX Symbolic Link (Symlink) Following

Overview onnx is an Open Neural Network Exchange Affected versions of this package are vulnerable to UNIX Symbolic Link Symlink Following through the handling of external data files when symbolic links are present. An attacker can access arbitrary files on the host system by crafting a symlink th...

8.7CVSS6.1AI score0.00593EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.11 views

Red Hat OpenShift AI 安全漏洞

Red Hat OpenShift AI is an AI lifecycle management platform developed by Red Hat Inc. There is a security vulnerability in Red Hat OpenShift AI, which stems from improper endpoint access control at the /save-document endpoint. This vulnerability could allow unverified remote attackers to write...

6AI score0.00568EPSS
Exploits0References1
OSV
OSV
added 2026/03/18 8:0 p.m.3 views

GHSA-QM7R-WWQ7-6F85 Statamic has a path traversal in file dictionary fieldtype

Impact Authenticated Control Panel users could read arbitrary .json, .yaml, and .csv files from the server by manipulating the file dictionary's filename configuration parameter in the fieldtype's endpoint. Patches This has been fixed in 5.73.14 and 6.7.0...

4.3CVSS5.8AI score0.00348EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.7 views

Digilent DASYLab 安全漏洞

Digilent DASYLab is a graphical data acquisition and application development platform developed by Digilent, Inc. There is a security vulnerability in Digilent DASYLab, which stems from out-of-bound writing when loading corrupted DSB files. This vulnerability may lead to information leakage or th...

8.5CVSS7.3AI score0.00202EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-27810

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection...

6.4CVSS5.9AI score0.00206EPSS
Exploits1References3
OSV
OSV
added 2026/02/27 8:21 p.m.7 views

UBUNTU-CVE-2026-27810

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS5.9AI score0.00206EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/02/27 7:44 p.m.5 views

CVE-2026-27810 calibre Vulnerable to HTTP Response Header Injection

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS6AI score0.00206EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/27 7:44 p.m.7 views

CVE-2026-27810

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS6AI score0.00206EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/02/27 7:44 p.m.6 views

EUVD-2026-9056

calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, an HTTP Response Header Injection vulnerability in the calibre Content Server allows any authenticated user to inject arbitrary HTTP headers into server responses via an...

6.4CVSS6AI score0.00206EPSS
Exploits1References1
Rows per page
Query Builder