Lucene search
K

37 matches found

NVD
NVD
added 2026/07/06 9:16 p.m.10 views

CVE-2026-57571

Crawl4AI is an open-source LLM-friendly web crawler and scraper. Prior to 0.9.0, when the crawler saves a downloaded file, the destination filename was taken from attacker-influenced input and joined to the downloads directory with no confinement. A filename containing an absolute path or travers...

9.6CVSS0.00502EPSS
Exploits1References2
CVE
CVE
added 2026/07/06 8:9 p.m.12 views

CVE-2026-57571

CVE-2026-57571 affects Crawl4AI prior to version 0.9.0. The vulnerability arises when saving downloaded files: the destination filename is taken from attacker-controlled input and joined to the downloads directory without confinement. If the filename contains an absolute path or traversal, it esc...

9.6CVSS6.4AI score0.00502EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/09/02 5:14 p.m.6 views

GHSA-CCC3-FVFX-MW3V MobSF Path Traversal in GET /download/<filename> using absolute filenames

Summary The GET /download/ route uses string path verification via os.path.commonprefix, which allows an authenticated user to download files outside the DWDDIR download directory from "neighboring" directories whose absolute paths begin with the same prefix as DWDDIR e.g., .../downloadsbak,...

5.3CVSS6.9AI score0.0073EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/09/02 12:0 a.m.12 views

PT-2025-35521

Name of the Vulnerable Software and Affected Versions MobSF version 4.4.0 Description The GET /download/ route uses string path verification via os.path.commonprefix, which allows an authenticated user to download files outside the intended download directory from neighboring directories with...

5.3CVSS6.1AI score0.0073EPSS
Exploits1References15
Positive Technologies
Positive Technologies
added 2025/06/04 12:0 a.m.10 views

PT-2025-40457

Name of the Vulnerable Software and Affected Versions Unity versions 2017.1 through 6000.3 Description A critical vulnerability exists in the Unity Runtime, potentially allowing attackers to execute arbitrary code on systems running applications built with affected versions of the engine. This...

8.4CVSS8.1AI score0.00583EPSS
Exploits4References143
The Hacker News
The Hacker News
added 2024/10/18 5:42 a.m.35 views

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser

Microsoft has disclosed details about a now-patched security flaw in Apple's Transparency, Consent, and Control TCC framework in macOS that has likely come under exploitation to get around a user's privacy preferences and access data. The shortcoming, codenamed HM Surf by the tech giant, is track...

5.5CVSS6.2AI score0.07052EPSS
Exploits1
CVE
CVE
added 2024/03/26 11:49 p.m.83 views

CVE-2024-2209

HP DeskJet printers are affected by CVE-2024-2209 in the Printer Firmware Update Utility (FUU) bundle. A user with administrative privileges can replace the original DLL in the FUU bundle with a malicious DLL of the same name and place it in the Windows default downloads directory, potentially ca...

6.3CVSS6.6AI score0.00211EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/03/29 2:15 p.m.5 views

CVE-2023-1663

Coverity versions prior to 2023.3.2 are vulnerable to forced browsing, which exposes authenticated resources to unauthorized actors. The root cause of this vulnerability is an insecurely configured servlet mapping for the underlying Apache Tomcat server. As a result, the downloads directory and i...

5.3CVSS6.1AI score0.00431EPSS
Exploits0References2
Prion
Prion
added 2023/03/29 2:15 p.m.21 views

Design/Logic Flaw

Coverity versions prior to 2023.3.2 are vulnerable to forced browsing, which exposes authenticated resources to unauthorized actors. The root cause of this vulnerability is an insecurely configured servlet mapping for the underlying Apache Tomcat server. As a result, the downloads directory and i...

5CVSS5.2AI score0.00431EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/03/29 1:16 p.m.21 views

CVE-2023-1663 Authenticated Resources Accessible via Forced Browsing

Coverity versions prior to 2023.3.2 are vulnerable to forced browsing, which exposes authenticated resources to unauthorized actors. The root cause of this vulnerability is an insecurely configured servlet mapping for the underlying Apache Tomcat server. As a result, the downloads directory and i...

6.5CVSS6.6AI score0.00431EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/29 12:0 a.m.4 views

PT-2023-17153 · Synopsys +1 · Coverity +1

Name of the Vulnerable Software and Affected Versions: Coverity versions prior to 2023.3.2 Description: The issue is related to forced browsing, which exposes authenticated resources to unauthorized actors due to an insecurely configured servlet mapping for the underlying Apache Tomcat server. Th...

6.5CVSS5AI score0.00431EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:45 a.m.4 views

SUSE CVE-2012-4206

Untrusted search path vulnerability in the installer in Mozilla Firefox before 17.0 and Firefox ESR 10.x before 10.0.11 on Windows allows local users to gain privileges via a Trojan horse DLL in the default downloads directory...

6.9CVSS7AI score0.00326EPSS
Exploits1References3
OSV
OSV
added 2021/12/30 10:15 p.m.3 views

CVE-2021-20153

Trendnet AC2600 TEW-827DRU version 2.08B01 contains a symlink vulnerability in the bittorrent functionality. If enabled, the bittorrent functionality is vulnerable to a symlink attack that could lead to remote code execution on the device. If an end user inserts a flash drive with a malicious...

6.8CVSS6.4AI score0.00958EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2018/03/22 6:29 a.m.1 views

CVE-2018-8909

The Wire application before 2018-03-07 for Android allows attackers to write to pathnames outside of the downloads directory via a ../ in a filename of a received file, related to AssetService.scala...

7.5CVSS5.5AI score0.01953EPSS
Exploits1References2
OSV
OSV
added 2018/03/22 6:29 a.m.2 views

CVE-2018-8909

The Wire application before 2018-03-07 for Android allows attackers to write to pathnames outside of the downloads directory via a ../ in a filename of a received file, related to AssetService.scala...

7.5CVSS5.8AI score0.01953EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2018/01/03 12:0 a.m.38 views

Fortinet Installer Client 5.6 DLL Hijacking

Affected Product: Fortinet Installer Client 5.6 for Windows PC Credit: Souhardya Sardar and Rohit Bankoti Contact : github.com/Souhardya Summary: Fortinet Installer contains a privilege escalation vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/03/15 12:0 a.m.51 views

Skype 7.16.0.102 DLL Hijacking

Vulnerability Title: Skype Insecure Library Loading Vulnerability api-ms-win-core-winrt-string-l1-1-0.dll Affected Product: Skype Vendor Homepage: https://www.microsoft.com/en-us/ MSRC Case 32355 TRK:0001002846 CVE-ID : CVE-2017-6517 Severity: Medium Description: Microsoft Skype contains a DLL...

0.3AI score0.46342EPSS
Exploits2
Packet Storm
Packet Storm
added 2016/07/19 12:0 a.m.89 views

Eclipse DLL Hijacking

Hi @ll, eclipse-inst-win32.exe and of course eclipse-inst-win64.exe too loads and executes multiple DLLs in version 4.5 also CMD.EXE from its "application directory". version 4.5 "Mars" on Windows 7: UXTheme.dll, WindowsCodecs.dll, AppHelp.dll, SrvCli.dll, Slc.dll, NTMarta.dll, ProfAPI.dll,...

6.9CVSS0.14736EPSS
Exploits4
Hacker One
Hacker One
added 2016/07/15 9:28 a.m.26 views

ownCloud: ownCloud 2.2.2.6192 DLL Hijacking Vulnerability

Summary ownCloud contains a DLL hijacking vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. The vulnerability exists due to some DLL file is loaded by 'ownCloud-2.2.2.6192-setup.exe' improperly. And it allows an attacker to load...

1.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/07/14 12:0 a.m.46 views

f.lux DLL Hijacking

Aloha, f.lux suffers from a DLL hijacking vulnerability. "flux-setup.exe" loads and executes dll from its "application directory". For software downloaded with a web browser the applicationdirectory is typically the user's "Downloads" directory: see , and for "prior art" about this well-known and...

7.4AI score
Exploits0
Rows per page
Query Builder