CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 6 days ago•5 views

Siemens RUGGEDCOM RST2428P External Control of File Name or Path (CVE-2026-26157)

A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attacker to craft malicious archives that when extracted, and under specific conditions, may write to files outside the intended directory. This can lead to arbitrary file overwrite, potentiall...

7CVSS7.5AI score0.00682EPSS

Exploits2References3

NVD•added last week•4 views

CVE-2026-47277

Runtipi is a personal homeserver orchestrator. In versions 4.9.1 through 4.9.3, Runtipi serves marketplace app logos from files inside cloned app-store repositories through an unauthenticated endpoint, which leads to arbitrary file read through app-store logo symlinks. The path guard checks only...

6.5CVSS0.00399EPSS

CVE•added 2026/06/09 5:5 p.m.•24 views

CVE-2026-47643

CVE-2026-47643 affects Azure Stack Edge, where external control of a file name or path can let an unauthenticated attacker execute code over the network. The NVD/CVE records describe the impact as remote code execution with high severity (CVSS v3.1: 9.8, NETWORK attack vector, no user interaction...

9.8CVSS5.7AI score0.00753EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2026/06/05 7:38 p.m.•7 views

CVE-2026-21012

External control of file name in AODManager prior to SMR Apr-2026 Release 1 allows privileged local attacker to create file with system privilege...

6.8CVSS5.4AI score0.00093EPSS

CVE•added 2026/06/05 5:49 p.m.•24 views

CVE-2026-49492

The CVE-2026-49492 entry concerns Markdown Preview Enhanced (pre-0.8.28) which opens external files/links from the preview via a shell and does not validate untrusted inputs from the markdown document (e.g., diagram filename attribute, imported file paths, latex_engine code-chunk attribute). On W...

8.8CVSS5.7AI score0.0034EPSS

Snyk•added 2026/06/03 9:15 p.m.•7 views

External Control of File Name or Path

Overview docling-core is an A python library to define and validate data types in Docling. Affected versions of this package are vulnerable to External Control of File Name or Path in the pilimage function, when handling image reference URIs. An attacker can access local files using the file://...

8.1CVSS5.5AI score0.0004EPSS

NVD•added 2026/05/29 8:16 p.m.•14 views

CVE-2026-44285

FastGPT is an AI Agent building platform. Prior to 4.15.0-beta1, a Server-Side Request Forgery SSRF vulnerability allows an authenticated attacker to bypass the global isInternalAddress network protection and make arbitrary HTTP GET requests to internal network services. This is achieved by...

7.7CVSS0.00263EPSS

EUVD•added 2026/05/29 7:32 p.m.•17 views

EUVD-2026-33430

ATTACKERKB•added 2026/05/29 7:32 p.m.•9 views

CVE-2026-44285

Exploits0References2Affected Software1

Vulnrichment•added 2026/05/29 7:32 p.m.•9 views

CVE-2026-44285 FastGPT: SSRF Protection Bypass via `externalFile` in Dataset Preview API

Cvelist•added 2026/05/29 7:32 p.m.•34 views

CVE-2026-44285 FastGPT: SSRF Protection Bypass via `externalFile` in Dataset Preview API

7.7CVSS0.00263EPSS

CVE•added 2026/05/29 7:32 p.m.•21 views

CVE-2026-44285

FastGPT is affected by an SSRF flaw in the dataset preview API. Before 4.15.0-beta1, an authenticated attacker could bypass isInternalAddress protection and reach internal services by abusing /api/core/dataset/file/getPreviewChunks with the externalFile data import type. The issue is resolved in ...

SUSE Linux•added 2026/05/29 3:36 p.m.•10 views

Security update for docker-stable

This update for docker-stable fixes the following issues CVE-2026-33747: github.com/moby/buildkit: malicious frontends can craft API messages that cause files to be written outside of the BuildKit state directory bsc1260967. CVE-2026-33748: github.com/moby/buildkit: insufficient validation of Git...

8.6CVSS7AI score0.00498EPSS

Exploits0References8

Snyk•added 2026/05/28 6:7 a.m.•7 views

External Control of File Name or Path

Overview org.jenkins-ci.plugins:email-ext is a plugin that allows you to configure every aspect of email notifications. Affected versions of this package are vulnerable to External Control of File Name or Path via the data-inline attribute. An attacker can gain control of the email content and re...

8.8CVSS5.9AI score0.00299EPSS

Snyk•added 2026/05/27 7:32 p.m.•5 views

External Control of File Name or Path

Overview Affected versions of this package are vulnerable to External Control of File Name or Path via the custom-payload-file field in REST API server mode. An attacker can read and exfiltrate arbitrary files accessible to the process by supplying a path to a file, which is then read line-by-lin...

8.7CVSS5.9AI score0.00251EPSS

CNNVD•added 2026/05/27 12:0 a.m.•10 views

Synology BeeDrive 安全漏洞

Synology BeeDrive is a backup and synchronization device developed by the Chinese company Synology. Versions of Synology BeeDrive prior to 1.3.2-13814 contained a security vulnerability. This vulnerability stemmed from the redis-server component, where external access to certain files or...

6.8CVSS5.8AI score0.00112EPSS

Snyk•added 2026/05/18 8:21 p.m.•8 views

External Control of File Name or Path

Overview nicegui is a Create web-based user interfaces with Python. The nice way. Affected versions of this package are vulnerable to External Control of File Name or Path via the preparecontent function. An attacker can access sensitive local files readable by the server by supplying specially...

8.7CVSS5.8AI score0.00255EPSS

Snyk•added 2026/05/18 4:21 p.m.•8 views

External Control of File Name or Path

Overview ci4-cms-erp/ci4ms is a composer create-project ci4-cms-erp/ci4ms Affected versions of this package are vulnerable to External Control of File Name or Path through the deleteFileOrFolder and renameFile processes. An attacker can remove or rename critical application files by sending craft...

7CVSS5.8AI score0.00037EPSS