Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-30323

Malicious code in bioql PyPI...

7.7CVSS9.2AI score0.00912EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-30593

Malicious code in bioql PyPI...

8.5CVSS6.5AI score0.00647EPSS
Exploits0References1
NVD
NVD
added 2025/03/28 3:15 p.m.19 views

CVE-2024-54291

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in labs64 PluginPass pluginpass-pro-plugintheme-licensing allows Manipulating Web Input to File System Calls.This issue affects PluginPass: from n/a through = 0.9.10...

8.6CVSS0.00517EPSS
Exploits0References1
NVD
NVD
added 2025/02/18 12:15 p.m.14 views

CVE-2025-1035

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Komtera Technolgies KLog Server allows Manipulating Web Input to File System Calls. This issue affects KLog Server: before 3.1.1...

5.7CVSS0.09676EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/02/18 12:15 p.m.7 views

CVE-2025-1035

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Komtera Technolgies KLog Server allows Manipulating Web Input to File System Calls. This issue affects KLog Server: before 3.1.1...

5.7CVSS5.4AI score0.09676EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/02/18 12:0 a.m.4 views

Komtera KLog Server 路径遍历漏洞

Komtera KLog Server is a logging solution from Komtera. A path traversal vulnerability exists in Komtera KLog Server versions prior to 3.1.1, which stems from improperly restricting directory pathnames when processing web input to file system calls...

5.7CVSS6.7AI score0.09676EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 6:56 a.m.7 views

CVE-2024-32807

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Brevo Sendinblue for WooCommerce allows Relative Path Traversal, Manipulating Web Input to File System Calls.This issue affects Sendinblue for WooCommerce: from n/a through 4.0.17...

8.5CVSS6.8AI score0.00647EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:21 a.m.9 views

CVE-2024-24934

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Elementor Elementor Website Builder allows Manipulating Web Input to File System Calls.This issue affects Elementor Website Builder: from n/a through 3.19.0...

8.5CVSS6.7AI score0.00715EPSS
Exploits0References1
NVD
NVD
added 2024/09/25 1:15 a.m.10 views

CVE-2024-9142

External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls. This issue affects e-Belediye: before 2.0.642...

9.8CVSS0.00422EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/25 12:0 a.m.2 views

Olgu Computer Systems e-Belediye 安全漏洞

Olgu Computer Systems e-Belediye is an application from Olgu Computer Systems. A security vulnerability exists in Olgu Computer Systems e-Belediye prior to version 2.0.642, which arises from incorrect privilege assignment of externally controlled filenames or paths, and allows manipulation of Web...

9.8CVSS6.6AI score0.00422EPSS
Exploits0References2
NVD
NVD
added 2024/06/27 10:15 a.m.43 views

CVE-2024-0949

Missing Authentication, Files or Directories Accessible to External Parties, Use of Hard-coded Credentials vulnerability in Talya Informatics Elektraweb allows Authentication Bypass. This issue affects Elektraweb: before v17.0.68...

9.8CVSS0.00528EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/27 9:36 a.m.7 views

CVE-2024-0949 Improper Access Control in Talya Informatics' Elektraweb

Missing Authentication, Files or Directories Accessible to External Parties, Use of Hard-coded Credentials vulnerability in Talya Informatics Elektraweb allows Authentication Bypass. This issue affects Elektraweb: before v17.0.68...

9.8CVSS5.8AI score0.00528EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/27 12:0 a.m.4 views

PT-2024-15930

Name of the Vulnerable Software and Affected Versions Elektraweb versions prior to 17.0.68 Description The issue is related to improper access control, missing authorization, and incorrect permission assignment for critical resources. It allows for exploiting incorrectly configured access control...

9.8CVSS6.6AI score0.00528EPSS
Exploits0References4
NVD
NVD
added 2024/05/17 9:15 a.m.29 views

CVE-2024-24934

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Elementor Elementor Website Builder allows Manipulating Web Input to File System Calls.This issue affects Elementor Website Builder: from n/a through 3.19.0...

8.5CVSS8.4AI score0.00715EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 8:50 a.m.58 views

CVE-2024-24934 WordPress Elementor plugin <= 3.19.0 - Arbitrary File Deletion and Phar Deserialization vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Elementor Elementor Website Builder allows Manipulating Web Input to File System Calls.This issue affects Elementor Website Builder: from n/a through 3.19.0...

8.5CVSS8.4AI score0.00715EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/17 6:41 a.m.29 views

CVE-2023-26526 WordPress Bookly plugin <= 21.7.1 - Authenticated Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Nota-Info Bookly allows Path Traversal, Manipulating Web Input to File System Calls.This issue affects Bookly: from n/a through 21.7.1...

7.7CVSS7.5AI score0.00912EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 6:41 a.m.54 views

CVE-2023-26526

CVE-2023-26526 affects WordPress Bookly plugin versions =21.8 to remediate.

7.7CVSS6.7AI score0.00912EPSS
Exploits0References1
NVD
NVD
added 2024/05/06 6:15 p.m.17 views

CVE-2024-32807

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Brevo Sendinblue for WooCommerce allows Relative Path Traversal, Manipulating Web Input to File System Calls.This issue affects Sendinblue for WooCommerce: from n/a through 4.0.17...

8.5CVSS8.4AI score0.00647EPSS
Exploits0References1
Rows per page
Query Builder