Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded last week6 views

CVE-2026-45403

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. Prior to 1.13.0, the AnythingLLM agent filesystem copy tool validates only the top-level source and destination paths. The recursive copy helper then descends into child...

2.5CVSS0.00018EPSS
Exploits1References2
CVE
CVEadded 2026/05/05 11:25 a.m.4 views

CVE-2026-43570

CVE-2026-43570 — OpenClaw : OpenClaw 2026.3.22 before 2026.4.5 contains a symlink traversal vulnerability in the remote marketplace repository path handling that allows an attacker to escape the repository root by providing crafted symlink paths. The affected component is the remote marketplace r...

6.5CVSS5.8AI score0.00083EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2026/02/18 7:21 p.m.1 views

UBUNTU-CVE-2026-22860

Rack is a modular Ruby web server interface. Prior to versions 2.2.22, 3.1.20, and 3.2.5, Rack::Directory’s path check used a string prefix match on the expanded path. A request like /../rootexample/ can escape the configured root if the target path starts with the root string, allowing directory...

7.5CVSS6.7AI score0.00123EPSS
Exploits1References4
OSV
OSVadded 2025/04/11 1:44 p.m.0 views

OESA-2025-1417 crun security update

crun is a fast and low-memory footprint OCI Container Runtime fully written in C. Security Fixes: crun is an open source OCI Container Runtime fully written in C. In affected versions A malicious container image could trick the krun handler into escaping the root filesystem, allowing file creatio...

8.5CVSS6.8AI score0.00227EPSS
Exploits0References2
Snyk
Snykadded 2022/12/07 4:8 p.m.1 views

Directory Traversal

Overview std/os is a Go standard library package std/os Affected versions of this package are vulnerable to Directory Traversal. Go Vulnerability Report: On Windows, restricted files can be accessed via os.DirFS and http.Dir.The os.DirFS function and http.Dir type provide access to a tree of file...

8.7CVSS7.6AI score0.00035EPSS
Exploits0References3
OSV
OSVadded 2022/06/24 12:15 p.m.0 views

CVE-2021-41636

MELAG FTP Server 2.2.0.4 allows an attacker to use the CWD command to break out of the FTP servers root directory and operate on the entire operating system, while the access restrictions of the user running the FTP server apply...

6.5CVSS5.8AI score
Exploits0References1
exploitpack
exploitpackadded 2000/08/07 12:0 a.m.32 views

SUIDPerl 5.00503 - Mail Shell Escape (2)

SUIDPerl 5.00503 - Mail Shell Escape 2 source: https://www.securityfocus.com/bid/1547/info The interaction between some security checks performed by suidperl, the setuid version of perl, and the /bin/mail program creates a scenario that allows local malicious users to execute commands with root...

7.4AI score
Exploits0
Rows per page
Query Builder