Lucene search
+L

4 matches found

OSV
OSV
added 2026/04/09 5:5 p.m.2 views

CVE-2026-39983 FTP Command Injection via CRLF in basic-ftp

basic-ftp is an FTP client for Node.js. Prior to 5.2.1, basic-ftp allows FTP command injection via CRLF sequences \r\n in file path parameters passed to high-level path APIs such as cd, remove, rename, uploadFrom, downloadTo, list, and removeDir. The library's protectWhitespace helper only handle...

8.6CVSS7.2AI score0.02185EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2021/12/02 10:4 p.m.5 views

jenkins: The operations FilePath#renameTo and FilePath#moveAllChildrenTo only check read permission on the source path

An incorrect permissions validation vulnerability was found in Jenkins. The operations FilePathrenameTo and FilePathmoveAllChildrenTo only check read permission on the source path which may allow an attacker who has access to these operations to be able to read and write to arbitrary files on the...

9.8CVSS5.8AI score0.02034EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/02 6:37 p.m.6 views

jenkins: The operations FilePath#renameTo and FilePath#moveAllChildrenTo only check read permission on the source path

An incorrect permissions validation vulnerability was found in Jenkins. The operations FilePathrenameTo and FilePathmoveAllChildrenTo only check read permission on the source path which may allow an attacker who has access to these operations to be able to read and write to arbitrary files on the...

9.8CVSS5.8AI score0.02034EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/12/01 12:28 p.m.6 views

jenkins: The operations FilePath#renameTo and FilePath#moveAllChildrenTo only check read permission on the source path

An incorrect permissions validation vulnerability was found in Jenkins. The operations FilePathrenameTo and FilePathmoveAllChildrenTo only check read permission on the source path which may allow an attacker who has access to these operations to be able to read and write to arbitrary files on the...

9.8CVSS5.8AI score0.02034EPSS
Exploits0References5
Rows per page
Query Builder