Lucene search
+L

124 matches found

OSV
OSV
added 2026/02/02 12:31 p.m.2 views

GHSA-WJ3H-WX8G-X699 H2O has an External Control of File Name or Path vulnerability

A vulnerability in h2oai/h2o-3 version 3.46.0.1 allows remote attackers to write arbitrary data to any file on the server. This is achieved by exploiting the /3/Parse endpoint to inject attacker-controlled data as the header of an empty file, which is then exported using the...

9.1CVSS6.6AI score0.00629EPSS
Exploits0References3
NVD
NVD
added 2026/02/02 11:16 a.m.7 views

CVE-2024-5986

A vulnerability in h2oai/h2o-3 version 3.46.0.1 allows remote attackers to write arbitrary data to any file on the server. This is achieved by exploiting the /3/Parse endpoint to inject attacker-controlled data as the header of an empty file, which is then exported using the...

9.1CVSS0.00629EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/02 10:36 a.m.6 views

CVE-2024-5986

A vulnerability in h2oai/h2o-3 version 3.46.0.1 allows remote attackers to write arbitrary data to any file on the server. This is achieved by exploiting the /3/Parse endpoint to inject attacker-controlled data as the header of an empty file, which is then exported using the...

9.1CVSS6.6AI score0.00629EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/02 10:36 a.m.7 views

EUVD-2024-55393

A vulnerability in h2oai/h2o-3 version 3.46.0.1 allows remote attackers to write arbitrary data to any file on the server. This is achieved by exploiting the /3/Parse endpoint to inject attacker-controlled data as the header of an empty file, which is then exported using the...

9.1CVSS6.6AI score0.00629EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.9 views

PT-2026-5651

Name of the Vulnerable Software and Affected Versions h2o-3 version 3.46.0.1 Description A flaw exists in h2o-3 that permits remote attackers to write arbitrary data to any file on the server. The issue is due to exploiting the /3/Parse API endpoint to inject attacker-controlled data as the heade...

9.1CVSS9.1AI score0.00629EPSS
Exploits0References11
EUVD
EUVD
added 2026/01/30 2:43 p.m.8 views

EUVD-2026-4966

Umbraco.Forms has Path Traversal and File Enumeration Vulnerabilities in Linux/Mac...

6CVSS5.9AI score0.0042EPSS
Exploits0References2
Snyk
Snyk
added 2026/01/29 8:51 p.m.17 views

Directory Traversal

Overview Umbraco.Forms is an a form creator that's as easy to use. Affected versions of this package are vulnerable to Directory Traversal via the fileName parameter of the export endpoint. An attacker can access and read arbitrary files on the filesystem by submitting specially crafted requests...

6.5CVSS6.3AI score0.0042EPSS
Exploits0References2
NVD
NVD
added 2026/01/29 8:16 p.m.8 views

CVE-2026-24687

Umbraco Forms is a form builder that integrates with the Umbraco content management system. It's possible for an authenticated backoffice-user to enumerate and traverse paths/files on the systems filesystem and read their contents, on Mac/Linux Umbraco installations using Forms. As Umbraco Cloud...

6.5CVSS0.0042EPSS
Exploits0References1
OSV
OSV
added 2026/01/29 7:57 p.m.6 views

CVE-2026-24687 Umbraco.Forms has path traversal and file enumeration vulnerability in Linux/Mac

Umbraco Forms is a form builder that integrates with the Umbraco content management system. It's possible for an authenticated backoffice-user to enumerate and traverse paths/files on the systems filesystem and read their contents, on Mac/Linux Umbraco installations using Forms. As Umbraco Cloud...

6CVSS5.8AI score0.0042EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/29 7:57 p.m.5 views

CVE-2026-24687

Umbraco Forms is a form builder that integrates with the Umbraco content management system. It's possible for an authenticated backoffice-user to enumerate and traverse paths/files on the systems filesystem and read their contents, on Mac/Linux Umbraco installations using Forms. As Umbraco Cloud...

6CVSS5.9AI score0.0042EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/01/29 7:57 p.m.28 views

CVE-2026-24687 Umbraco.Forms has path traversal and file enumeration vulnerability in Linux/Mac

Umbraco Forms is a form builder that integrates with the Umbraco content management system. It's possible for an authenticated backoffice-user to enumerate and traverse paths/files on the systems filesystem and read their contents, on Mac/Linux Umbraco installations using Forms. As Umbraco Cloud...

6CVSS0.0042EPSS
Exploits0References1
CVE
CVE
added 2026/01/29 7:57 p.m.22 views

CVE-2026-24687

Umbraco.Forms (forms component for Umbraco CMS) is affected on Mac/Linux installations using Forms. The vulnerability allows an authenticated backoffice user to enumerate and traverse filesystem paths via the fileName parameter of the export endpoint (/umbraco/forms/api/v1/export), enabling read ...

6.5CVSS5.9AI score0.0042EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/28 6:43 a.m.7 views

CVE-2026-0825

The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on the CSV export functionality in all versions up to, and including, 1.4.5. This makes it possible for unauthenticated attackers to download...

5.3CVSS5.9AI score0.00408EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/01/26 3:10 p.m.16 views

CVE-2026-24139

MyTube is a self-hosted downloader and player for several video websites. Versions 1.7.78 and below do not safeguard against authorization bypass, allowing guest users to download the complete application database. The application fails to properly validate user permissions on the database export...

8.7CVSS5.9AI score0.00317EPSS
Exploits0References1
NVD
NVD
added 2026/01/24 12:15 a.m.11 views

CVE-2026-24139

MyTube is a self-hosted downloader and player for several video websites. Versions 1.7.78 and below do not safeguard against authorization bypass, allowing guest users to download the complete application database. The application fails to properly validate user permissions on the database export...

8.7CVSS0.00317EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/24 12:0 a.m.8 views

MyTube security vulnerability

MyTube is a video self-hosting downloader and player developed by Peifan Li. Versions of MyTube prior to 1.7.78 contained a security vulnerability, which stemmed from improper permission verification at the database export endpoint. This vulnerability could allow low-privilege users to access...

8.7CVSS5.8AI score0.00317EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.12 views

PT-2026-4537

Name of the Vulnerable Software and Affected Versions MyTube versions 1.7.78 and below Description The MyTube application does not properly protect against authorization bypass, potentially allowing guest users to download the complete application database. The application does not validate user...

8.7CVSS5.3AI score0.00317EPSS
Exploits0References10
VulnCheck KEV
VulnCheck KEV
added 2026/01/22 12:0 a.m.9 views

VulnCheck KEV: CVE-2023-7335

EduSoho versions prior to 22.4.7 contain an arbitrary file read vulnerability in the classroom-course-statistics export functionality. A remote, unauthenticated attacker can supply crafted path traversal sequences in the fileNames parameter to read arbitrary files from the server filesystem,...

8.7CVSS5.9AI score0.00738EPSS
In wildExploits0References48
EUVD
EUVD
added 2026/01/04 11:32 a.m.6 views

EUVD-2026-0778

A vulnerability was identified in CRMEB up to 5.6.1. This issue affects some unknown processing of the file /adminapi/product/productexport. Such manipulation of the argument cateid leads to sql injection. The attack may be launched remotely. The exploit is publicly available and might be used. T...

5.8CVSS5AI score0.00329EPSS
Exploits1References6
OSV
OSV
added 2026/01/04 11:32 a.m.10 views

CVE-2025-15443 CRMEB product_export sql injection

A vulnerability was identified in CRMEB up to 5.6.1. This issue affects some unknown processing of the file /adminapi/product/productexport. Such manipulation of the argument cateid leads to sql injection. The attack may be launched remotely. The exploit is publicly available and might be used. T...

5.1CVSS5.8AI score0.00329EPSS
Exploits1References7
Rows per page
Query Builder