Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:49 a.m.4 views

CVE-2025-69220

LibreChat is a ChatGPT clone with additional features. Version 0.8.1-rc2 does not enforce proper access control for file uploads to an agents file context and file search. An authenticated attacker with access to the agent ID can change the behavior of arbitrary agents by uploading new files to t...

7.1CVSS6.8AI score0.00282EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:52 a.m.9 views

CVE-2023-33498

alist =3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file...

8.8CVSS6.9AI score0.00737EPSS
Exploits0References1
NVD
NVD
added 2025/03/28 9:15 a.m.6 views

CVE-2025-27718

Improper limitation of a pathname to a restricted directory 'Path Traversal' issue exists in the file upload process of the USB storage file-sharing function of HGW-BL1500HM Ver 002.002.003 and earlier. If this vulnerability is exploited, the product's files may be obtained and/or altered or...

8.8CVSS0.00878EPSS
Exploits0References2
OSV
OSV
added 2021/04/12 5:15 p.m.2 views

CVE-2020-15734

An Origin Validation Error vulnerability in Bitdefender Safepay allows an attacker to manipulate the browser's file upload capability into accessing other files in the same directory or sub-directories. This issue affects: Bitdefender Safepay versions prior to 25.0.7.29...

5.5CVSS6.1AI score0.00157EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2015/11/08 10:59 p.m.4 views

CVE-2015-5019

IBM Sterling Integrator 5.1 before 50100048 and Sterling B2B Integrator 5.2 before 50205009 allow remote authenticated users to read or upload files by leveraging a password-change requirement...

5.5CVSS5.6AI score0.00948EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2011/06/01 12:0 a.m.36 views

MediaCluster (mcCMS) Shell Upload

========================================================================= MediaCluster mcCMS Arbitrary File Upload Vulnerability ========================================================================== +=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+= +=+=+= +=+=+=...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/10/16 12:0 a.m.16 views

Fedora 9 : drupal-6.5-1.fc9 (2008-8852)

Update to 6.5, security fixes: SA-2008-047 http://drupal.org/node/318706 - File upload access bypass unprivileged file attach - Access rules bypass - BlogAPI access bypass Remember to log in to your site as the admin user before upgrading this package. After upgrading the package, browse to...

5CVSS5.3AI score0.02502EPSS
Exploits0References5
Rows per page
Query Builder