CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/03/03 5:46 p.m.•2 views

GHSA-M6W7-QV66-G3MF BentoML Vulnerable to Arbitrary File Write via Symlink Path Traversal in Tar Extraction

Arbitrary File Write via Symlink Path Traversal in Tar Extraction Summary The safeextracttarfile function validates that each tar member's path is within the destination directory, but for symlink members it only validates the symlink's own path, not the symlink's target. An attacker can create a...

8.6CVSS6.5AI score0.0001EPSS

Exploits1References4

ATTACKERKB•added 2026/03/03 12:0 a.m.•3 views

CVE-2025-66945

A path traversal vulnerability exists in the ZIP extraction API of Zdir Pro 4.x. When a crafted ZIP archive is processed by the backend at /api/extract, files may be written outside the intended directory, leading to arbitrary file overwrite and potentially remote code execution...

6.6AI score0.00204EPSS

Vulnrichment•added 2026/03/03 12:0 a.m.•4 views

CVE-2025-66945

6.6AI score0.00204EPSS

Exploits1References2

Cvelist•added 2026/03/03 12:0 a.m.•22 views

CVE-2025-66945

0.00204EPSS

Exploits1References2

CVE•added 2026/03/03 12:0 a.m.•6 views

CVE-2025-66945

CVE-2025-66945 affects Zdir Pro 4.x ZIP extraction API (/api/extract). A path traversal vulnerability can cause files to be written outside the intended directory, enabling arbitrary file overwrites and potentially remote code execution. Connected sources confirm the issue exists; exploitation de...

9.1CVSS6.6AI score0.00204EPSS

Exploits1References2Affected Software1

CNNVD•added 2026/03/03 12:0 a.m.•2 views

BentoML 后置链接漏洞

BentoML is an open-source model service library developed by BentoML. It is used to build high-performance and scalable artificial intelligence applications using Python. Prior to BentoML 1.4.36, there was a post-link vulnerability. This vulnerability stemmed from the safeextracttarfile function,...

8.6CVSS6.1AI score0.0001EPSS

Exploits1References2

RedhatCVE•added 2026/03/02 12:42 p.m.•3 views

CVE-2026-3284

A flaw was found in libvips. A local attacker could exploit an integer overflow vulnerability in the vipsextractareabuild function by manipulating the extractarea argument. This could lead to a denial of service DoS condition...

5.5CVSS5.9AI score0.00013EPSS

Exploits2References2

Tenable Nessus•added 2026/03/02 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-3284

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the...

5.5CVSS5.3AI score0.00013EPSS

Exploits2References3

Tenable Nessus•added 2026/03/02 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-3283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in libvips 8.19.0. This issue affects the function vipsextractbandbuild of the file libvips/conversion/extract.c. The manipulatio...

7.1CVSS5.1AI score0.0001EPSS

RedhatCVE•added 2026/03/01 1:43 a.m.•3 views

CVE-2026-28411

WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, an unsafe use of the extract function on the $REQUEST superglobal allows an unauthenticated attacker to overwrite local variables in multiple PHP scripts. This vulnerability can be leveraged to completely bypass...

Snyk•added 2026/02/28 12:14 a.m.•2 views

Improper Check or Handling of Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check or Handling of Exceptional Conditions due to the extractNestedArchive function. An attacker can cause incomplete scanning of potentially malicious content by supplying nested archives that fail to extract. Remediation...

6.9CVSS6AI score0.00036EPSS

Exploits0References2

NVD•added 2026/02/27 10:16 p.m.•6 views

CVE-2026-28411

9.8CVSS0.00325EPSS

Vulnrichment•added 2026/02/27 9:52 p.m.•3 views

CVE-2026-28411 WeGIA Vulnerable to Authentication Bypass via `extract($_REQUEST)`

OSV•added 2026/02/27 9:52 p.m.•5 views

CVE-2026-28411 WeGIA Vulnerable to Authentication Bypass via `extract($_REQUEST)`

EUVD•added 2026/02/27 9:52 p.m.•4 views

EUVD-2026-9081

ATTACKERKB•added 2026/02/27 9:52 p.m.•5 views

CVE-2026-28411

Exploits1References2Affected Software1

CVE•added 2026/02/27 9:52 p.m.•6 views

CVE-2026-28411

WeGIA Web Manager prior to version 3.6.5 is vulnerable to an authentication bypass via unsafe use of extract($_REQUEST). The issue allows an unauthenticated attacker to overwrite local variables across multiple PHP scripts, enabling unauthorized access to administrative and protected areas. remed...