Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-16453

Malicious code in bioql PyPI...

8.5CVSS6.4AI score0.0027EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.13 views

PT-2025-33459 · Unknown +1 · Nextgen Gallery +1

Name of the Vulnerable Software and Affected Versions: Assistant for NextGEN Gallery plugin for WordPress versions up to and including 1.0.9 Description: The Assistant for NextGEN Gallery plugin for WordPress is vulnerable to arbitrary directory deletion due to insufficient file path validation i...

7.5CVSS6.6AI score0.00495EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/05/30 4:34 a.m.13 views

CVE-2025-48479 FreeScout Has Business Logic Errors

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the laravel-translation-manager package does not correctly validate user input, enabling the deletion of any directory, given sufficient access rights. This issue has been patched in version 1.8.180...

8.5CVSS0.0027EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/05 9:21 a.m.11 views

CVE-2024-13780 Hero Mega Menu - Responsive WordPress Menu Plugin <= 1.16.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Directory Deletion

The Hero Mega Menu - Responsive WordPress Menu Plugin plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the hmenudeletemenu function in all versions up to, and including, 1.16.5. This makes it possible for unauthenticated attackers to delete...

6.5CVSS0.00321EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/08/26 2:55 p.m.20 views

CVE-2014-2528

kcleanup.cpp in KDirStat 2.7.3 does not properly quote strings when deleting a directory, which allows remote attackers to execute arbitrary commands via a ' single quote character in the directory name, a different vulnerability than CVE-2014-2527...

6.8CVSS6AI score0.02879EPSS
Exploits1References1
Rows per page
Query Builder