Lucene search
K

140 matches found

Positive Technologies
Positive Technologies
added 6 days ago10 views

PT-2026-57011

Name of the Vulnerable Software and Affected Versions SiYuan versions prior to 3.7.1 Description An authenticated administrator or API-token user can exfiltrate sensitive files from the host system. The 'POST /api/file/globalCopyFiles' endpoint accepts absolute source paths and uses the...

4.9CVSS6.1AI score0.00278EPSS
Exploits0References6
OSV
OSV
added 2026/06/26 8:55 p.m.3 views

CVE-2026-49984 Kestra: Path traversal in `LocalStorage` allows any authenticated user to read arbitrary server files via the execution file-download API (`\..\` bypasses the `..` guard)

Kestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.23, the local internal-storage backend validates user-supplied paths for .. traversal before it converts Windows-style backslashes to forward slashes. An attacker can therefore smuggle a traversal sequence past...

7.7CVSS6.1AI score0.00386EPSS
Exploits1References3
OSV
OSV
added 2026/05/27 12:57 p.m.1 views

CVE-2026-46054 selinux: fix overlayfs mmap() and mprotect() access checks

In the Linux kernel, the following vulnerability has been resolved: selinux: fix overlayfs mmap and mprotect access checks The existing SELinux security model for overlayfs is to allow access if the current task is able to access the top level file the "user" file and the mounter's credentials ar...

7.1CVSS5.9AI score0.00118EPSS
Exploits0References15
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

Before version 96.0.4664.93, using the "after free" mechanism in the file API in Google Chrome allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS7AI score0.02073EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux – Vulnerability in Chromium

Using the "after free" mechanism in the File API in Google Chrome before version 90.0.4430.212 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS8.1AI score0.01201EPSS
Exploits1References1
OSV
OSV
added 2026/05/17 10:45 a.m.3 views

CVE-2026-8750 h2oai h2o-3 ImportFile API PersistNFS.java importFiles information disclosure

A vulnerability was identified in h2oai h2o-3 up to 7402. Affected by this issue is the function importFiles of the file h2o-core/src/main/java/water/persist/PersistNFS.java of the component ImportFile API. Such manipulation leads to information disclosure. The attack can be executed remotely. Th...

6.9CVSS5.7AI score0.00497EPSS
Exploits0References6
OSV
OSV
added 2026/03/31 10:47 p.m.18 views

GHSA-C5C6-37VQ-PJCQ baserCMS Path Traversal Leads to Arbitrary File Write and RCE via Theme File API

Summary A path traversal vulnerability exists in the baserCMS 5.x theme file management API /baser/api/admin/bc-theme-file/themefiles/add.json that allows arbitrary file write. An authenticated administrator can include ../ sequences in the path parameter to create a PHP file in an arbitrary...

7.2CVSS6.8AI score0.01049EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2026/03/31 10:47 p.m.9 views

baserCMS Path Traversal Leads to Arbitrary File Write and RCE via Theme File API

Summary A path traversal vulnerability exists in the baserCMS 5.x theme file management API /baser/api/admin/bc-theme-file/themefiles/add.json that allows arbitrary file write. An authenticated administrator can include ../ sequences in the path parameter to create a PHP file in an arbitrary...

7.2CVSS8AI score0.01049EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/03/31 10:47 p.m.4 views

EUVD-2026-17267

baserCMS Path Traversal Leads to Arbitrary File Write and RCE via Theme File API...

7.2CVSS5.9AI score0.01049EPSS
Exploits1References4
Snyk
Snyk
added 2026/03/31 2:30 a.m.2 views

Directory Traversal

Overview baserproject/basercms is a Content management system based on CakePHP. Affected versions of this package are vulnerable to Directory Traversal via the theme file management API when an authenticated administrator supplies crafted input to the path parameter. An attacker can write arbitra...

8.6CVSS6.7AI score0.01049EPSS
Exploits1References2
NVD
NVD
added 2026/03/31 1:16 a.m.5 views

CVE-2026-30940

baserCMS is a website development framework. Prior to version 5.2.3, a path traversal vulnerability exists in the theme file management API /baser/api/admin/bc-theme-file/themefiles/add.json that allows arbitrary file write. An authenticated administrator can include ../ sequences in the path...

7.2CVSS0.01049EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/31 12:45 a.m.3 views

CVE-2026-30940 baserCMS: Path Traversal in Theme File API Leads to Arbitrary File Write and RCE

baserCMS is a website development framework. Prior to version 5.2.3, a path traversal vulnerability exists in the theme file management API /baser/api/admin/bc-theme-file/themefiles/add.json that allows arbitrary file write. An authenticated administrator can include ../ sequences in the path...

7.2CVSS6.4AI score0.01049EPSS
Exploits1References3
OSV
OSV
added 2026/03/31 12:45 a.m.3 views

CVE-2026-30940 baserCMS: Path Traversal in Theme File API Leads to Arbitrary File Write and RCE

baserCMS is a website development framework. Prior to version 5.2.3, a path traversal vulnerability exists in the theme file management API /baser/api/admin/bc-theme-file/themefiles/add.json that allows arbitrary file write. An authenticated administrator can include ../ sequences in the path...

7.2CVSS6.4AI score0.01049EPSS
Exploits1References5
CVE
CVE
added 2026/03/31 12:45 a.m.20 views

CVE-2026-30940

CVE-2026-30940 affects baserCMS prior to version 5.2.3. A path traversal flaw exists in the theme file management API at /baser/api/admin/bc-theme-file/theme_files/add.json, allowing an authenticated administrator to inject ../ sequences in the path and create a PHP file outside the theme directo...

7.2CVSS6.5AI score0.01049EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.6 views

PT-2026-29152

baserCMS is a website development framework. Prior to version 5.2.3, a path traversal vulnerability exists in the theme file management API /baser/api/admin/bc-theme-file/theme files/add.json that allows arbitrary file write. An authenticated administrator can include ../ sequences in the path...

7.2CVSS6.5AI score0.01049EPSS
Exploits1References4
OSV
OSV
added 2026/03/26 8:33 p.m.5 views

GO-2026-4817 GoDoxy has a Path Traversal Vulnerability in its File API in github.com/yusing/godoxy

GoDoxy has a Path Traversal Vulnerability in its File API in github.com/yusing/godoxy...

6.5CVSS5.9AI score0.00502EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/24 12:0 a.m.12 views

Jeson Customer Relationship Management System 代码问题漏洞

Jeson Customer Relationship Management System is a lightweight customer relationship management system developed by DefaultFunction’s individual developer. The Jeson Customer Relationship Management System has code vulnerabilities; these vulnerabilities stem from incorrect handling of parameters ...

7.5CVSS7.2AI score0.00321EPSS
Exploits0References8
EUVD
EUVD
added 2026/03/11 3:30 p.m.6 views

EUVD-2026-11194

Vociferous provides cross-platform, offline speech-to-text with local AI refinement. Prior to 4.4.2, the vulnerability exists in src/api/system.py within the exportfile route. The application accepts a JSON payload containing a filename and content. While the developer intended for a native UI...

10CVSS5.9AI score0.00644EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/01 12:0 a.m.7 views

Pironman Dashboard 安全漏洞

Pironman Dashboard is a console interface open-sourced by SunFounder. Versions of Pironman Dashboard prior to 1.3.13 have security vulnerabilities; these vulnerabilities stem from path traversal in the log file API endpoints, which could lead to arbitrary file reading and deletion...

9.3CVSS7.4AI score0.00602EPSS
Exploits0References6
OSV
OSV
added 2026/01/31 11:46 p.m.13 views

CVE-2026-25069 SunFounder Pironman Dashboard <= 1.3.13 Path Traversal Arbitrary File Read/Deletion

SunFounder Pironman Dashboard pmdashboard version 1.3.13 and prior contain a path traversal vulnerability in the log file API endpoints. An unauthenticated remote attacker can supply traversal sequences via the filename parameter to read and delete arbitrary files. Successful exploitation can...

9.3CVSS7.2AI score0.00602EPSS
Exploits0References7
Rows per page
Query Builder