Lucene search
K

10 matches found

Packet Storm News
Packet Storm News
added 2026/04/22 12:0 a.m.6 views

DNG File Generator with Malformed Metadata

This Python script generates a custom DNG Digital Negative image file by manually constructing TIFF/DNG structures, including headers, Image File Directories IFDs, and metadata tags...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-34738

Malicious code in bioql PyPI...

4.3CVSS7.2AI score0.00696EPSS
Exploits0References8
CNNVD
CNNVD
added 2022/12/14 12:0 a.m.2 views

MCPMappingViewer 路径遍历漏洞

MCPMappingViewer is a small GUI for viewing the mapping from Minecraft obfuscated code names to MCP code names. A path traversal vulnerability exists in MCPMappingViewer. An attacker could use this vulnerability to perform incorrect operations to obtain sensitive information in file directories...

9.8CVSS8.4AI score0.00505EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/12/14 12:0 a.m.4 views

SCIFIO 路径遍历漏洞

SCIFIO is SCIFIO open source an extensible Java framework. Used to read and write images, especially N-dimensional scientific images. A path traversal vulnerability exists in SCIFIO. An attacker could use this vulnerability to perform incorrect operations to obtain sensitive information in file...

9.8CVSS8.3AI score0.00536EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/07/28 2:15 a.m.4 views

CVE-2022-2479

Insufficient validation of untrusted input in File in Google Chrome on Android prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious app to obtain potentially sensitive information from internal file directories via a crafted HTML page...

4.3CVSS5.8AI score0.00696EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2022/07/28 12:0 a.m.38 views

CVE-2022-2479

Insufficient validation of untrusted input in File in Google Chrome on Android prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious app to obtain potentially sensitive information from internal file directories via a crafted HTML page...

4.3CVSS5.2AI score0.00696EPSS
Exploits0
Veracode
Veracode
added 2022/06/13 5:39 a.m.21 views

Directory Traversal

convert-svg-core is vulnerable to directory traversal. The vulnerability exists in Converter.js because the SVG tags are not properly sanitized which allows an attacker to access file directories via a specially crafted SVG file...

9.8CVSS8.7AI score0.02072EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2021/03/25 5:15 p.m.8 views

CVE-2021-25353

Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the PendingIntent...

7.1CVSS0.00213EPSS
Exploits0References2
Prion
Prion
added 2021/03/25 5:15 p.m.9 views

Design/Logic Flaw

Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the PendingIntent...

3.6CVSS6.7AI score0.00213EPSS
Exploits0References2Affected Software1
Talos Blog
Talos Blog
added 2018/09/22 7:23 a.m.29 views

Threat Roundup for September 14 to September 21

Today, as we do every week, Talos is giving you a glimpse into the most prevalent threats we’ve observed this week — covering the dates between Sept. 14 and 21. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, we will summarize the threats we’ve observed by...

0.4AI score
Exploits0
Rows per page
Query Builder