CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/06/07 3:0 a.m.•34 views

CVE-2026-11451 GL.iNet GL-MT3000 FTP Protocol glc snprintf command injection

A flaw has been found in GL.iNet GL-MT3000 4.4.5. This impacts the function snprintf of the file /cgi-bin/glc of the component FTP Protocol Handler. Executing a manipulation of the argument mediadir can lead to command injection. It is possible to launch the attack remotely. Upgrading to version...

7.5CVSS0.02027EPSS

Exploits1References5

NVD•added 2026/05/17 1:16 p.m.•26 views

CVE-2026-8756

A vulnerability has been found in fishaudio Bert-VITS2 up to 8f7fbd8c4770965225d258db548da27dc8dd934c. The impacted element is the function generateconfig of the file webuipreprocess.py of the component Gradio Interface. Such manipulation of the argument datadir leads to path traversal. The attac...

7.5CVSS0.00512EPSS

CNNVD•added 2026/05/17 12:0 a.m.•8 views

Bert-VITS2 路径遍历漏洞

Bert-VITS2 is a core text-to-speech model developed by Fish Audio. Bert-VITS2 has a path traversal vulnerability. This vulnerability stems from the improper handling of the datadir parameter in the generateconfig function of the Gratuit Interface component, resulting in path traversal. Attackers...

7.5CVSS7.1AI score0.00512EPSS

NVD•added 2026/05/11 11:20 p.m.•9 views

CVE-2026-43901

Wireshark MCP is an MCP Server that turns tshark into a structured analysis interface, then layers in optional Wireshark suite utilities. In 1.1.5 and earlier, wireshark-mcp exposes a wiresharkexportobjects MCP tool that accepts an attacker-controlled destdir parameter and passes it to tshark's...

6.8CVSS0.00281EPSS

Exploits1References1

CNNVD•added 2026/05/04 12:0 a.m.•6 views

MCP Server for ArangoDB 路径遍历漏洞

MCP Server for ArangoDB is a database interaction tool based on ArangoDB, developed by Alp Sarıyer. Versions of MCP Server for ArangoDB 0.4.7 and earlier had a path traversal vulnerability. This vulnerability stemmed from the function arangobackup in the MCP Interface component, which allowed for...

6.5CVSS6.6AI score0.00288EPSS

CNNVD•added 2026/04/27 12:0 a.m.•6 views

Code-Projects Online Lot Reservation System 访问控制错误漏洞

The Code-Projects Online Lot Reservation System is an open-source online reservation system developed by Code-Projects. Version 1.0 of the Code-Projects Online Lot Reservation System contains a vulnerability related to access control. This vulnerability stems from the handling of the directory...

5.8CVSS5.8AI score0.00218EPSS

RedhatCVE•added 2026/03/26 3:18 p.m.•2 views

CVE-2026-30578

File Thinghie 2.5.7 is vulnerable to Cross Site Scripting XSS. A malicious user can leverage the "dir" parameter of the GET request to invoke arbitrary javascript code...

6.5CVSS5.9AI score0.00184EPSS

ATTACKERKB•added 2026/03/11 11:9 a.m.•2 views

CVE-2026-3178

The Name Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'namedirectoryname' parameter in all versions up to, and including, 1.32.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

7.2CVSS5.9AI score0.00255EPSS

Exploits0References6

NVD•added 2026/02/18 10:16 p.m.•5 views

CVE-2019-25358

FileOptimizer 14.00.2524 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the FileOptimizer32.ini configuration file. Attackers can overwrite the TempDirectory parameter with a 5000-character buffer to cause the application to crash when...

8.7CVSS0.00384EPSS

ATTACKERKB•added 2026/02/11 3:40 p.m.•3 views

CVE-2026-25869

MiniGal Nano versions 0.3.5 and prior contain a path traversal vulnerability in index.php via the dir parameter. The application appends user-controlled input to the photos directory and attempts to prevent traversal by removing dot-dot sequences, but this protection can be bypassed using crafted...

6.9CVSS5.6AI score0.005EPSS

Positive Technologies•added 2026/02/11 12:0 a.m.•5 views

PT-2026-7618

6.9CVSS5.6AI score0.005EPSS

NVD•added 2026/01/28 12:15 p.m.•5 views

CVE-2025-59901

Disk Pulse Enterprise v10.4.18 has an authenticated reflected XSS vulnerability in the '/monitordirectory?sid=' endpoint, caused by insufficient validation of the 'monitordirectory' parameter sent by POST. An attacker could exploit this weakness to send malicious content to an authenticated user...

8.5CVSS0.0019EPSS

Vulnrichment•added 2026/01/28 12:1 p.m.•4 views

CVE-2025-59901 authenticated reflected XSS vulnerability in Sync Breeze Enterprise Server

8.5CVSS5.9AI score0.0019EPSS

Cvelist•added 2026/01/28 12:1 p.m.•26 views

CVE-2025-59901 authenticated reflected XSS vulnerability in Sync Breeze Enterprise Server

8.5CVSS0.0019EPSS

Positive Technologies•added 2026/01/28 12:0 a.m.•5 views

PT-2026-5106

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a persistent authenticated Cross-Site Scripting XSS vulnerability. An attacker could send malicious content to an authenticated user and steal information from their session due to insufficient validation of user...

5.1CVSS5.9AI score0.00173EPSS

Positive Technologies•added 2026/01/28 12:0 a.m.•4 views

PT-2026-5109

Disk Pulse Enterprise v10.4.18 has an authenticated reflected XSS vulnerability in the '/monitor directory?sid=' endpoint, caused by insufficient validation of the 'monitor directory' parameter sent by POST. An attacker could exploit this weakness to send malicious content to an authenticated use...

8.5CVSS5.9AI score0.0019EPSS

CNNVD•added 2026/01/28 12:0 a.m.•5 views

Flexense Sync Breeze Enterprise Server and Flexense Disk Pulse Enterprise have cross-site scripting vulnerabilities

Flexense Sync Breeze Enterprise Server and Flexense Disk Pulse Enterprise are both products of Flexense Corporation. Flexense Sync Breeze Enterprise Server is a network file synchronization software. Flexense Disk Pulse Enterprise is a real-time file system monitoring software. Both the Flexense...

5.4CVSS5.7AI score0.00173EPSS