Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4184 matches found

OSV
OSVadded 2026/02/26 4:27 p.m.5 views

GO-2026-4502 Echo has a Windows path traversal via backslash in middleware.Static default filesystem in github.com/labstack/echo/v5

Echo has a Windows path traversal via backslash in middleware.Static default filesystem in github.com/labstack/echo/v5...

5.3CVSS5.5AI score0.00329EPSS
Exploits1References3
OSV
OSVadded 2026/02/25 3:45 a.m.1 views

ECHO-1291-4784-C718

Bulletin has no description...

7.5CVSS5.1AI score0.00327EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.2 views

ECHO-3601-998E-3D53

Bulletin has no description...

7.5CVSS5.1AI score0.00327EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.2 views

ECHO-15FF-770A-3861

Bulletin has no description...

7.5CVSS5.1AI score0.00438EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.2 views

ECHO-4DEB-6F40-7871

Bulletin has no description...

6.5CVSS5.1AI score0.0034EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.2 views

ECHO-47E1-8FA8-B833

Bulletin has no description...

7.5CVSS5.1AI score0.00275EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.2 views

ECHO-0257-4D24-10D2

Bulletin has no description...

7.5CVSS5.1AI score0.0036EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.2 views

ECHO-1A7D-AFEC-31FD

Bulletin has no description...

8.6CVSS5.1AI score0.00751EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.3 views

ECHO-BAA9-B0DD-7FD5

Bulletin has no description...

7.5CVSS5.1AI score0.00429EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.1 views

ECHO-0C56-39D9-33DE

Bulletin has no description...

5.3CVSS5.1AI score0.00401EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.2 views

ECHO-7194-1339-FD86

Bulletin has no description...

5.5CVSS5.1AI score0.00181EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.1 views

ECHO-8502-3F7F-E2B6

Bulletin has no description...

7.5CVSS5.1AI score0.00449EPSS
Exploits0References1
OSV
OSVadded 2026/02/25 3:45 a.m.1 views

ECHO-C980-C6BE-2403

Bulletin has no description...

7.5CVSS5.1AI score0.00348EPSS
Exploits0References1
OSV
OSVadded 2026/02/24 8:22 a.m.4 views

ECHO-CF84-736A-7911

Bulletin has no description...

6.2CVSS5.1AI score0.00159EPSS
Exploits1References1
OSV
OSVadded 2026/02/24 8:22 a.m.4 views

ECHO-400A-DE0A-4538

Bulletin has no description...

5.5CVSS5.1AI score0.00131EPSS
Exploits1References2
OSV
OSVadded 2026/02/24 8:21 a.m.4 views

ECHO-1935-6289-C67C

Bulletin has no description...

9.8CVSS5AI score0.00253EPSS
Exploits1References2
Packet Storm
Packet Stormadded 2026/02/24 12:0 a.m.118 views

📄 Echo Framework 5.0.4 Path Traversal

This Python script is a security testing tool designed to detect a path traversal vulnerability in web applications built with the Echo framework version 5 running on Windows systems...

5.6AI score
Exploits0
RedhatCVE
RedhatCVEadded 2026/02/20 7:40 p.m.3 views

CVE-2026-25766

Echo is a Go web framework. In versions 5.0.0 through 5.0.2 on Windows, Echo’s middleware.Static using the default filesystem allows path traversal via backslashes, enabling unauthenticated remote file read outside the static root. In middleware/static.go, the requested path is unescaped and...

5.3CVSS5.7AI score0.00329EPSS
Exploits1References1
NVD
NVDadded 2026/02/19 4:27 p.m.4 views

CVE-2026-25766

Echo is a Go web framework. In versions 5.0.0 through 5.0.2 on Windows, Echo’s middleware.Static using the default filesystem allows path traversal via backslashes, enabling unauthenticated remote file read outside the static root. In middleware/static.go, the requested path is unescaped and...

5.3CVSS0.00329EPSS
Exploits1References3
CVE
CVEadded 2026/02/19 3:49 p.m.11 views

CVE-2026-25766

The CVE-2026-25766 issue affects Echo (github.com/labstack/echo/v5) on Windows, where middleware.Static uses the default filesystem and path.Clean does not treat backslashes as separators. This lets an unauthenticated attacker read files outside the static root by crafting a path that includes se...

5.3CVSS5.6AI score0.00329EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder