Lucene search
+L

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-1896

Malicious code in bioql PyPI...

7.5CVSS9.3AI score0.22372EPSS
Exploits3References21
Positive Technologies
Positive Technologies
added 2025/10/03 12:0 a.m.9 views

PT-2025-40539

Name of the Vulnerable Software and Affected Versions Claude Code versions prior to 1.0.120 Description An issue existed where Claude Code did not properly handle symlinks when enforcing permission deny rules. Specifically, if a user blocked Claude Code’s access to a file, but Claude Code had...

2.3CVSS6.6AI score0.00396EPSS
Exploits0References8
CVE
CVE
added 2025/07/08 8:49 p.m.31 views

CVE-2025-49538

CVE-2025-49538 affects Adobe ColdFusion versions 2025.2, 2023.14, 2021.20 and earlier. It is an XML Injection vulnerability that can lead to arbitrary file system read (and DoS); exploitation uses crafted XML/XPath and requires access to shared secrets, with no user interaction. Adobe APSB25-69 a...

7.4CVSS6.9AI score0.01973EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/03/25 2:0 p.m.4 views

GHSA-X574-M823-4X7W Vite bypasses server.fs.deny when using ?raw??

Summary The contents of arbitrary files can be returned to the browser. Impact Only apps explicitly exposing the Vite dev server to the network using --host or server.host config option are affected. Details @fs denies access to files outside of Vite serving allow list. Adding ?raw?? or...

5.3CVSS5.9AI score0.74998EPSS
Exploits28References8
Symantec
Symantec
added 2009/08/26 8:0 a.m.36 views

Symantec Altiris Deployment Solution Multiple Vulnerabilities

SUMMARY Symantecs Altiris Deployment Solution contains vulnerabilities that could potentially be leveraged for unauthorized file access or a denial of service on a client system, authentication bypass on the Server to local system-level access on a client system. AFFECTED PRODUCTS Product | Versi...

9.3CVSS0.7AI score0.03763EPSS
Exploits0Affected Software1
securityvulns
securityvulns
added 2001/06/22 12:0 a.m.24 views

NERF Advisory #2 - 1C:Arcadia multiple vulnerablilities.

--== NERF gr0up security advisory 2 ==-- Multiple vulnerabilities in web-shop 1C: Arcadia, in module tradecli.dll 1. Show path scripts directory. Exploit: http://host/scripts/tradecli.dll?template=nonexistfile Will show error message, witch consist full path to work dir usually /scripts. Advice f...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2000/05/25 12:0 a.m.67 views

Множественные дырки в WebJet

Обратный путь в директориях позволяет получить любой файл с сервера, кроме того можно организовать DoS-атаку...

0.4AI score
Exploits0References2Affected Software1
Rows per page
Query Builder