CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: SAPCAR affected versions not specified Description: The issue arises from SAPCAR's improper sanitization of file paths during the extraction of SAPCAR archives. This allows an attacker to create a malicious archive with directory traversal...

5.8CVSS6.2AI score0.00292EPSS

Exploits0References6

RedhatCVE•added 2025/04/28 12:0 a.m.•13 views

CVE-2025-46652

In IZArc through 4.5, there is a Mark-of-the-Web Bypass Vulnerability. When a user performs an extraction from an archive file that bears Mark-of-the-Web, Mark-of-the-Web is not propagated to the extracted files. NOTE: this is disputed because Mark-of-the-Web propagation can increase risk via...

6.1CVSS6.8AI score0.00262EPSS

Exploits0References1

OSV•added 2022/05/09 8:15 a.m.•17 views

CVE-2022-30333

RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract aka unpack operation, as demonstrated by creating a /.ssh/authorizedkeys file. NOTE: WinRAR and Android RAR are unaffected...

7.5CVSS7.6AI score0.98975EPSS

Exploits12References7

securityvulns•added 2003/07/31 12:0 a.m.•48 views

GameSpy Arcade Arbitrary File Writing Vulnerability

ThreeZee Technology, Inc. Security Advisory TZT002 Advisory: GameSpy Arcade Arbitrary File Writing Discovered: July 26, 2003 Released: July 31, 2003 Risk: Critical; Allows writing of a file to any location on the victim's system. Author: Mike Kristovich, Security Researcher ThreeZee Technology,...

6.9AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by