Lucene search
K

73 matches found

OSV
OSV
added 2026/07/02 7:20 p.m.2 views

GHSA-38J7-23HF-9MHC electerm has Path Traversal in Zmodem and Trzsz Download Filename Handling

Impact A path traversal vulnerability exists in the Zmodem and Trzsz file download handlers in electerm. When receiving files via Zmodem or Trzsz protocols, electerm uses the remote-supplied filename directly in path.join with the user-selected download directory without sanitization. A malicious...

7.1CVSS6AI score0.00034EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/30 11:4 a.m.6 views

CVE-2026-57079

Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata. Net::BitTorrent validates file path components only on the .torrent-file ingest path. The peer and magnet metadata path onmetadatareceived, reached from the BEP...

5.3CVSS5.8AI score0.00282EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/30 11:4 a.m.5 views

EUVD-2026-40288

Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata. Net::BitTorrent validates file path components only on the .torrent-file ingest path. The peer and magnet metadata path onmetadatareceived, reached from the BEP...

5.3CVSS5.8AI score0.00282EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/30 11:4 a.m.30 views

CVE-2026-57079 Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata

Net::BitTorrent versions through 2.0.1 for Perl write files outside the download directory via path traversal in peer-supplied metadata. Net::BitTorrent validates file path components only on the .torrent-file ingest path. The peer and magnet metadata path onmetadatareceived, reached from the BEP...

0.00282EPSS
Exploits0References1
CVE
CVE
added 2026/06/30 11:4 a.m.21 views

CVE-2026-57079

CVE-2026-57079 affects Net::BitTorrent for Perl up to version 2.0.1. The flaw arises when parsing peer-supplied metadata (BEP09 ut_metadata path) where attacker-controlled file names are passed to Storage::add_file and Storage::_parse_file_tree; Path::Tiny’s child() does not collapse "..", so a v...

5.3CVSS5.8AI score0.00282EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/17 7:8 p.m.11 views

EUVD-2026-37785

Evil-WinRM through 3.9, fixed in commit 6ecd570, contains a path traversal vulnerability in the downloaddir function that allows a rogue or compromised remote Windows server to write files outside the intended download directory by returning filenames with traversal sequences from Get-ChildItem...

7.4CVSS5.4AI score0.00304EPSS
Exploits0References3
NVD
NVD
added 2026/06/05 10:16 p.m.11 views

CVE-2026-11416

MoviePilot contains a path traversal vulnerability in the AliPan, U115, and Rclone cloud storage download handlers where the local destination path is constructed by concatenating the configured download directory with a filename taken directly from remote cloud API metadata without basename...

8.1CVSS0.00469EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/05 9:42 p.m.12 views

CVE-2026-11416 MoviePilot Path Traversal via Cloud Storage Download Handlers

MoviePilot contains a path traversal vulnerability in the AliPan, U115, and Rclone cloud storage download handlers where the local destination path is constructed by concatenating the configured download directory with a filename taken directly from remote cloud API metadata without basename...

8.1CVSS5.6AI score0.00469EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/05 7:9 p.m.11 views

CVE-2026-35446

LORIS Longitudinal Online Research and Imaging System is a self-hosted web application that provides data- and project-management for neuroimaging research. From 24.0.0 to before 27.0.3 and 28.0.1, an incorrect order of operations in the FilesDownloadHandler could result in an attacker escaping t...

8.6CVSS5.5AI score0.00231EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in OpenSSH

In OpenSSH 8.2, the scp client incorrectly sends duplicate responses to the server when a utimes system call fails. This allows a malicious, unprivileged user on the remote server to overwrite arbitrary files in the client’s download directory by creating a crafted subdirectory anywhere on the...

7.5CVSS7.2AI score0.02267EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.11 views

pyLoad 路径遍历漏洞

pyLoad is an open-source download manager written in Python. Versions of pyLoad prior to 0.5.0b3.dev100 contained a path traversal vulnerability. This vulnerability stemmed from the uncleaned folder names in the setpackagedata API function, which could allow users with Perms.MODIFY permissions to...

8.1CVSS5.8AI score0.00395EPSS
Exploits1References1
Snyk
Snyk
added 2026/05/05 9:13 p.m.7 views

Directory Traversal

Overview pyload-ng is a The free and open-source Download Manager written in pure Python Affected versions of this package are vulnerable to Directory Traversal via the addpackage function. An attacker can write files outside the intended download directory by submitting specially crafted folder...

8.1CVSS6.3AI score0.00342EPSS
Exploits1References2
OSV
OSV
added 2026/05/05 9:13 p.m.7 views

GHSA-97R3-5W84-R4Q8 PyLoad Vulnerable to Path Traversal via Package Folder Name

Insufficient sanitization of package folder names allows writing files outside the intended download directory. Affected Component - src/pyload/core/api/init.py - Function: addpackage Description Package folder names are sanitized using insufficient string replacement: python folder =...

6.5CVSS5.8AI score0.00342EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/05/05 12:0 a.m.13 views

PT-2026-37263

Name of the Vulnerable Software and Affected Versions pyLoad versions prior to 0.5.0b3.dev100 Description Insufficient sanitization of package folder names allows writing files outside the intended download directory. The issue exists in the add package function within the src/pyload/core/api/ in...

6.5CVSS5.8AI score0.00342EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/04/08 6:28 p.m.4 views

CVE-2026-35446 LORIS has a path traversal in FilesDownloadHandler

LORIS Longitudinal Online Research and Imaging System is a self-hosted web application that provides data- and project-management for neuroimaging research. From 24.0.0 to before 27.0.3 and 28.0.1, an incorrect order of operations in the FilesDownloadHandler could result in an attacker escaping t...

7.7CVSS5.9AI score0.00231EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/08 6:28 p.m.2 views

EUVD-2026-20580

LORIS Longitudinal Online Research and Imaging System is a self-hosted web application that provides data- and project-management for neuroimaging research. From 24.0.0 to before 27.0.3 and 28.0.1, an incorrect order of operations in the FilesDownloadHandler could result in an attacker escaping t...

7.7CVSS5.9AI score0.00231EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.7 views

LORIS Neuroimaging Platform 安全漏洞

LORIS Neuroimaging Platform is a neuroimaging platform open sourced by ACElab. Versions of LORIS Neuroimaging Platform from 24.0.0 to 27.0.3, as well as versions before 28.0.1, have security vulnerabilities. These vulnerabilities stem from incorrect operation sequences in the FilesDownloadHandler...

8.6CVSS5.8AI score0.00231EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-27699

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The basic-ftp FTP client library for Node.js contains a path traversal vulnerability CWE-22 in versions prior to 5.2.0 in the downloadToDir method. A malicious...

9.8CVSS7.2AI score0.00528EPSS
Exploits2References2
SUSE CVE
SUSE CVE
added 2026/02/27 12:24 a.m.6 views

SUSE CVE-2026-27699

The basic-ftp FTP client library for Node.js contains a path traversal vulnerability CWE-22 in versions prior to 5.2.0 in the downloadToDir method. A malicious FTP server can send directory listings with filenames containing path traversal sequences ../ that cause files to be written outside the...

9.8CVSS5.7AI score0.00528EPSS
Exploits2References3
EUVD
EUVD
added 2026/02/26 6:31 p.m.4 views

EUVD-2026-8858

VideoLAN VLC for Android prior to version 3.7.0 contains a path traversal vulnerability in the Remote Access Server routing for the authenticated endpoint GET /download. The file query parameter is concatenated into a filesystem path under the configured download directory without canonicalizatio...

2.3CVSS5.5AI score0.00275EPSS
Exploits0References3
Rows per page
Query Builder