Lucene search
K

18 matches found

CNVD
CNVD
added 2026/02/05 12:0 a.m.8 views

Unspecified Vulnerability in TeamViewer DEX Client (CNVD-2026-16661)

TeamViewer DEX Client is a digital employee experience and endpoint management software from TeamViewer Germany. TeamViewer DEX Client has a security vulnerability that can be exploited by an attacker to cause the deletion of protected system files...

7.1CVSS5.7AI score0.00195EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/01/29 8:39 a.m.3 views

CVE-2026-23563 Privilege escalation in TeamViewer DEX via DeleteFileByPath instruction

Improper Link Resolution Before File Access invoked by 1E‑Explorer‑TachyonCore‑DeleteFileByPath instruction in TeamViewer DEX - 1E Client before version 26.1 on Windows allows a low‑privileged local attacker to delete protected system files via a crafted RPC control junction or symlink that is...

5.7CVSS5.9AI score0.00195EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/08 2:21 a.m.5 views

EUVD-2026-1596

The WP Cost Estimation plugin for WordPress is vulnerable to arbitrary file uploads and deletion due to missing file type validation in the lfbuploadform and lfbremoveFile AJAX actions in versions up to, and including, 9.642. This makes it possible for unauthenticated attackers to upload arbitrar...

9.8CVSS7.1AI score0.00597EPSS
Exploits0References9
Cvelist
Cvelist
added 2023/05/09 1:12 p.m.46 views

CVE-2023-20098

A vulnerability in the CLI of Cisco SDWAN vManage Software could allow an authenticated, local attacker to delete arbitrary files. This vulnerability is due to improper filtering of directory traversal character sequences within system commands. An attacker with administrative privileges could...

4.4CVSS6.2AI score0.00514EPSS
Exploits0References1
NVD
NVD
added 2022/10/11 5:15 p.m.12 views

CVE-2022-34432

Dell Hybrid Client below 1.8 version contains a gedit vulnerability. A guest attacker could potentially exploit this vulnerability, allowing deletion of user and some system files and folders...

8.2CVSS0.00351EPSS
Exploits0References1
Prion
Prion
added 2022/02/11 6:15 p.m.13 views

Authentication flaw

A CWE-306: Missing Authentication for Critical Function vulnerability exists that could cause deletion of arbitrary files in the context of the user running IGSS due to lack of validation of network messages. Affected Product: Interactive Graphical SCADA System Data Collector dc.exe V15.0.0.21320...

5CVSS9.1AI score0.21388EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/22 2:43 p.m.25 views

CVE-2020-7882 anySign directory traversal vulnerability

Using the parameter of getPFXFolderList function, attackers can see the information of authorization certification and delete the files. It occurs because the parameter contains path traversal charactersie. '../../../'...

7.5CVSS9.2AI score0.01209EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/06/22 7:58 a.m.3 views

jenkins-2-plugins/config-file-provider: does not require POST requests for an HTTP endpoint, resulting in a cross-site request forgery (CSRF) vulnerability.

A cross-site request forgery CSRF vulnerability was found in the config-file-provider Jenkins plugin. The plugin does not require POST requests for an HTTP endpoint which allows attackers to delete configuration files corresponding to an attacker-specified ID...

5.8CVSS6.2AI score0.01053EPSS
Exploits0References4
OSV
OSV
added 2019/08/23 1:15 p.m.11 views

CVE-2019-15493

openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21...

7.5CVSS7.1AI score
Exploits0References1
CVE
CVE
added 2019/08/23 12:43 p.m.42 views

CVE-2019-15493

openITCOCKPIT prior to 3.7.1 is affected by CVE-2019-15493, allowing deletion of files (RVID 4-445b21). The connected documents confirm the vulnerable platform and impact, but do not provide deeper root-cause details. A patched release, 3.7.1 (tag openITCOCKPIT-3.7.1), is available as remediation...

7.5CVSS7.5AI score0.0118EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/05/16 10:29 p.m.20 views

Arbitrary file deletion

In Symfony before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. This is related to...

6.5CVSS6.7AI score0.02302EPSS
Exploits0References13Affected Software1
Palo Alto Networks
Palo Alto Networks
added 2018/06/29 12:0 a.m.522 views

Local Privilege Escalation in Management Web Interface

A vulnerability exists in the Management web interface that could allow local privilege escalation. The Management web interface does not properly validate specific request parameters, which can potentially allow deletion of files in the system. Ref. PAN-90954; CVE-2018-9242 Successful exploitati...

2.8AI score0.00426EPSS
Exploits0References1Affected Software1
Hacker One
Hacker One
added 2018/06/18 8:46 a.m.14 views

Vanilla: FileUpload Plugin: CSRF (delete all attached files)

Description ------------ The current version 1.9.1 of the official FileUpload plugin is vulnerable to CSRF. A successful attack allows the removal of files the attacked user has the permission to delete. Administrators for example have the permission to delete all attached files. As the request t...

0.4AI score
Exploits0
CNVD
CNVD
added 2018/05/18 12:0 a.m.4 views

File Access Vulnerability in Multiple IBM Products (CNVD-2018-13180)

IBM SAN Volume Controller SVC, built with IBM Spectrum Storage software, is a reliable system that helps improve the data value, security and ease of use of new and existing storage infrastructures.The IBM Storwize product family provides all-flash, hybrid storage solutions with common features a...

7.6CVSS7.4AI score0.01244EPSS
Exploits2References1
Exploit DB
Exploit DB
added 2016/07/04 12:0 a.m.27 views

WordPress Plugin Real3D FlipBook - Multiple Vulnerabilities

POCExploit CodeCanyon Real3D FlipBook WordPress Plugin + http://codecanyon.net/item/real3d-flipbook-wordpress-plugin/6942587 + Multiple Vulnerabilities Found by: Mukarram Khalid + https://mukarramkhalid.com/wordpress-real-3d-flipbook-plugin-exploit/ + Requirements : Python 3.4.x or higher,...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2015/10/20 12:0 a.m.31 views

Adobe Acrobat Multiple Vulnerabilities - 01 (Oct 2015) - Mac OS X

Adobe Acrobat is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobat"; ifdescription...

10CVSS6.7AI score0.23389EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
added 2015/07/13 12:0 a.m.19 views

Samsung SyncThru UpdateDriverFileServlet Directory Traversal Denial of Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of Samsung SyncThru. By default, authentication is not required to exploit this vulnerability. The specific flaw exists within the DriverFileUploadServlet servlet exposed by upload/updateDriver. The...

7.8CVSS9AI score0.12633EPSS
Exploits0
0day.today
0day.today
added 2012/05/21 12:0 a.m.31 views

Supernews <= 2.6.1 SQL Injection Exploit

Exploit for php platform in category web applications ?php Exploit Title: Supernews = 2.6.1 SQL Injection Exploit Google Dork: intext:"2003 - 2004 : SuperNews : Todos os direitos reservados" Date: 2012/ Author: WhiteCollarGroup Software Link: http://phpbrasil.com/script/vT0FaOCySSH/supernews...

7.1AI score
Exploits0
Rows per page
Query Builder