Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2026/03/02 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-23084

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been identified in Node.js, specifically affecting the handling of drive names in the Windows environment. Certain Node.js functions do not...

5.6CVSS6.4AI score0.01289EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/01/28 4:35 a.m.10 views

CVE-2025-23084

A vulnerability has been identified in Node.js, specifically affecting the handling of drive names in the Windows environment. Certain Node.js functions do not treat drive names as special on Windows. As a result, although Node.js assumes a relative path, it actually refers to the root directory...

5.6CVSS5.7AI score0.01289EPSS
Exploits1References1
Hacker One
Hacker Oneadded 2024/01/08 2:35 a.m.11 views

Node.js: Path traversal by drive name in Windows environment

A vulnerability has been identified in the handling of drive names in the Windows environment of Node.js. Certain Node.js functions do not treat drive names as special on Windows, resulting in a path that refers to the root directory instead of a relative path as assumed. This vulnerability affec...

5.6CVSS6.7AI score0.01289EPSS
Exploits1
SUSE CVE
SUSE CVEadded 2023/02/15 5:28 a.m.1 views

SUSE CVE-2014-3697

Absolute path traversal vulnerability in the untarblock function in win32/untar.c in Pidgin before 2.10.10 on Windows allows remote attackers to write to arbitrary files via a drive name in a tar archive of a smiley theme...

6.4CVSS7.1AI score0.01028EPSS
Exploits0References2
0daydb
0daydbadded 2020/05/25 2:9 p.m.123 views

Synology DiskStation Manager smart.cgi - Remote Command Execution

This Metasploit module exploits a vulnerability found in Synology DiskStation Manager DSM versions prior to 5.2-5967-5... This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule \d+&minor=?\d+&build=?\d...

7.2CVSS0.2AI score0.6238EPSS
Exploits16
NVD
NVDadded 2014/10/29 10:55 a.m.24 views

CVE-2014-3697

Absolute path traversal vulnerability in the untarblock function in win32/untar.c in Pidgin before 2.10.10 on Windows allows remote attackers to write to arbitrary files via a drive name in a tar archive of a smiley theme...

6.4CVSS6.6AI score0.01028EPSS
Exploits0References4
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.11 views

fastream ftp++ 2.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2267/info It is possible for a remote uesr to gain read permissions outside of the Faststream FTP++ Server directory. By requesting an 'ls' command along with the drive name, Fastream FTP++ will disclose the contents of t...

7.1AI score
Exploits0
Rows per page
Query Builder