Lucene search
K

4 matches found

OSV
OSV
added 2026/02/26 12:39 a.m.4 views

CVE-2026-27884 NetExec vulnerable to arbitrary file write via path traversal in spider_plus module

NetExec is a network execution tool. Prior to version 1.5.1, the module spiderplus improperly creates the output file and folder path when saving files from SMB shares. It does not take into account that it is possible for Linux SMB shares to have path traversal characters such as ../ in them. An...

5.3CVSS6.2AI score0.00329EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/02/07 12:0 a.m.6 views

PT-2025-5985 · Unknown · Dhtmlxfileexplorer

Name of the Vulnerable Software and Affected Versions: dhtmlxFileExplorer version 8.4.6 Description: The issue allows a remote attacker to obtain sensitive information through the file download functionality. This is due to a local file inclusion vulnerability. Recommendations: For...

6.5CVSS6.7AI score0.00516EPSS
Exploits3References5
Positive Technologies
Positive Technologies
added 2024/10/03 12:0 a.m.5 views

PT-2024-29302 · Veertu · Veertu Anka

Name of the Vulnerable Software and Affected Versions: Veertu Anka Build version 1.42.0 Description: A directory traversal vulnerability exists in the archive functionality of Veertu Anka. This vulnerability can be triggered by a specially crafted HTTP request, potentially leading to the disclosu...

7.5CVSS6.8AI score0.47107EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2021/10/13 12:0 a.m.7 views

PT-2021-8121 · Draytek · Draytek Vigorconnect

Name of the Vulnerable Software and Affected Versions: Draytek VigorConnect version 1.6.0-B3 Description: A local file inclusion vulnerability exists in the file download functionality of the WebServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary...

7.8CVSS6.6AI score0.74279EPSS
Exploits3References35
Rows per page
Query Builder