124 matches found
USN-8359-1: NNCP vulnerability
It was discovered that NNCP did not properly sanitize file paths in packet data during file requesting and file saving operations. A remote attacker could possibly use this issue to read or write arbitrary files outside of the intended directory...
GO-2026-4695 Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload in github.com/forceu/gokapi
Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload in github.com/forceu/gokapi. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerabili...
CVE-2026-30961
Gokapi
CVE-2026-30961 Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload
Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. Prior to 2.2.4, the chunked upload completion path for file requests does not validate the total file size against the per-request MaxSize limit. An attacker with a public file request link can split an...
CVE-2026-30961 Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload
Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. Prior to 2.2.4, the chunked upload completion path for file requests does not validate the total file size against the per-request MaxSize limit. An attacker with a public file request link can split an...
CVE-2026-30961 Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload
Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. Prior to 2.2.4, the chunked upload completion path for file requests does not validate the total file size against the per-request MaxSize limit. An attacker with a public file request link can split an...
EUVD-2026-12080
Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload...
Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload
Summary The chunked upload completion path for file requests does not validate the total file size against the per-request MaxSize limit. An attacker with a public file request link can split an oversized file into chunks each under MaxSize and upload them sequentially, bypassing the size...
GHSA-45VH-RPC8-HXPP Gokapi's File Request MaxSize Limit Bypassed via Multi-Chunk Upload
Summary The chunked upload completion path for file requests does not validate the total file size against the per-request MaxSize limit. An attacker with a public file request link can split an oversized file into chunks each under MaxSize and upload them sequentially, bypassing the size...
EUVD-2011-3703
Malware in sbrugna...
EUVD-2005-2111
Malware in sbrugna...
EUVD-2005-1956
Malware in sbrugna...
EUVD-2018-8871
Malware in sbrugna...
EUVD-2011-3657
Malware in sbrugna...
EUVD-2021-0753
Malware in sbrugna...
EUVD-2006-2563
Malware in sbrugna...
Frappe Learning Management System 安全漏洞
Frappe Learning Management System is an easy-to-use open source learning management system from Frappe Open Source. A security vulnerability exists in Frappe Learning Management System version 2.35.0, which originates from a direct request for the file /files/ in the Assignment Picture Handler...
EUVD-2024-29841
Malicious code in bioql PyPI...
EUVD-2025-5084
Malicious code in bioql PyPI...
Adobe InDesign Desktop Buffer Overflow Vulnerability
Adobe InDesign Desktop is desktop publishing software developed by Adobe, mainly used for the typography of print and digital publications, including books, magazines, newspapers, posters, e-books and so on. Adobe InDesign Desktop suffers from a buffer overflow vulnerability that originates from...