Lucene search
+L

12 matches found

packetstorm
packetstorm
added 2026/05/05 12:0 a.m.74 views

📄 Erugo 0.2.14 Remote Code Execution

Erugo versions 0.2.14 suffer from an authenticated remote code execution vulnerability. Exploit Title: Erugo = 0.2.14 - Authenticated Remote Code Execution RCE Date: 2026-02-02 Exploit Author: Abdul Moiz Vendor Homepage: https://github.com/ErugoOSS/Erugo Software Link:...

10CVSS6.4AI score0.03008EPSS
Exploits3
exploitdb
exploitdb
added 2026/04/30 12:0 a.m.77 views

Erugo 0.2.14 - Remote Code Execution (RCE)

Exploit Title: Erugo = 0.2.14 - Authenticated Remote Code Execution RCE Date: 2026-02-02 Exploit Author: Abdul Moiz Vendor Homepage: https://github.com/ErugoOSS/Erugo Software Link:...

10CVSS5.2AI score0.03008EPSS
Exploits3
redhatcve
redhatcve
added 2026/01/30 3:24 a.m.6 views

CVE-2026-24897

Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user‑supplied paths when creating shares. By specifying a writable path within the publ...

10CVSS6.7AI score0.03008EPSS
Exploits3References1
nvd
nvd
added 2026/01/28 11:15 p.m.8 views

CVE-2026-24897

Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user‑supplied paths when creating shares. By specifying a writable path within the publ...

10CVSS0.03008EPSS
Exploits3References3
attackerkb
attackerkb
added 2026/01/28 10:24 p.m.5 views

CVE-2026-24897

Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user‑supplied paths when creating shares. By specifying a writable path within the publ...

10CVSS6.7AI score0.03008EPSS
Exploits3References4Affected Software1
cvelist
cvelist
added 2026/01/28 10:24 p.m.22 views

CVE-2026-24897 Authenticated Remote Code Execution via Arbitrary File Upload

Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user‑supplied paths when creating shares. By specifying a writable path within the publ...

10CVSS0.03008EPSS
Exploits3References3
euvd
euvd
added 2026/01/28 10:24 p.m.6 views

EUVD-2026-4975

Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user‑supplied paths when creating shares. By specifying a writable path within the publ...

10CVSS6.7AI score0.03008EPSS
Exploits3References3
cve
cve
added 2026/01/28 10:24 p.m.60 views

CVE-2026-24897

CVE-2026-24897 affects Erugo, a self-hosted file-sharing platform. In versions up to 0.2.14, an authenticated, low-privileged user can upload arbitrary files to a location of the attacker’s choosing due to insufficient validation of user-supplied paths when creating shares. By specifying a writab...

10CVSS6.7AI score0.03008EPSS
Exploits3References3Affected Software1
vulnrichment
vulnrichment
added 2026/01/28 10:24 p.m.4 views

CVE-2026-24897 Authenticated Remote Code Execution via Arbitrary File Upload

Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user‑supplied paths when creating shares. By specifying a writable path within the publ...

10CVSS6.7AI score0.03008EPSS
Exploits3References3
osv
osv
added 2026/01/28 10:24 p.m.8 views

CVE-2026-24897 Authenticated Remote Code Execution via Arbitrary File Upload

Erugo is a self-hosted file-sharing platform. In versions up to and including 0.2.14, an authenticated low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user‑supplied paths when creating shares. By specifying a writable path within the publ...

10CVSS6.7AI score0.03008EPSS
Exploits3References5
cnnvd
cnnvd
added 2026/01/28 12:0 a.m.9 views

Erugo code issues and vulnerabilities

Erugo is an open-source file sharing platform developed by Erugo. Versions of Erugo 0.2.14 and earlier have code vulnerabilities. These vulnerabilities stem from insufficient path validation when creating shares. This allows low-privilege users to upload arbitrary files to designated locations,...

10CVSS6.3AI score0.03008EPSS
Exploits3References4
ptsecurity
ptsecurity
added 2026/01/28 12:0 a.m.6 views

PT-2026-5235

Name of the Vulnerable Software and Affected Versions Erugo versions up to and including 0.2.14 Description Erugo is a self-hosted file-sharing platform. An authenticated, low-privileged user can upload arbitrary files to any specified location due to insufficient validation of user-supplied path...

10CVSS6.7AI score0.03008EPSS
Exploits3References15
Rows per page
Query Builder