Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-20251

Malicious code in bioql PyPI...

7.5CVSS5.5AI score0.01064EPSS
Exploits0References1
CNVD
CNVD
added 2025/07/11 12:0 a.m.3 views

Marvell QConvergeConsole path traversal vulnerability (CNVD-2025-20449)

Marvell QConvergeConsole is a unified adapter management software across data centers from Marvell USA. A path traversal vulnerability exists in Marvell QConvergeConsole due to an error in getFileUploadSize. An attacker could exploit the vulnerability to disclose information in the SYSTEM context...

7.5CVSS6.5AI score0.01064EPSS
Exploits0References1
OSV
OSV
added 2025/07/07 3:15 p.m.4 views

CVE-2025-6795

Marvell QConvergeConsole getFileUploadSize Directory Traversal Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability. Th...

7.5CVSS5.7AI score0.01064EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.6 views

Marvell QConvergeConsole 路径遍历漏洞

Marvell QConvergeConsole is a unified adapter management software across data centers from Marvell USA. A path traversal vulnerability exists in Marvell QConvergeConsole due to an error in getFileUploadSize. An attacker could exploit the vulnerability to disclose information in the SYSTEM context...

7.5CVSS6.4AI score0.01064EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:15 a.m.7 views

CVE-2023-47792

Cross-Site Request Forgery CSRF vulnerability in Infinite Uploads Big File Uploads – Increase Maximum File Upload Size plugin = 2.1.1 versions...

8.8CVSS7.1AI score0.00256EPSS
Exploits0References1
CVE
CVE
added 2025/03/20 10:10 a.m.52 views

CVE-2024-11171

CVE-2024-11171 affects danny-avila/librechat (git 0c2a583). The vulnerability arises from improper input validation and the use of multer with in-memory storage, which has no file size limit, allowing an attacker to trigger out-of-memory conditions and a DoS. The issue is fixed in version 0.7.6. ...

7.5CVSS6.7AI score0.00761EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2024/09/07 9:15 a.m.33 views

CVE-2024-8538

The Big File Uploads – Increase Maximum File Upload Size plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.1.2. This is due the plugin not sanitizing a file path in an error message. This makes it possible for authenticated attackers, with...

4.3CVSS0.00558EPSS
Exploits0References3
Prion
Prion
added 2023/11/22 7:15 p.m.21 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Infinite Uploads Big File Uploads – Increase Maximum File Upload Size plugin = 2.1.1 versions...

6.8CVSS7.3AI score0.00256EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2022/09/26 12:0 a.m.23 views

WordPress Drag and Drop Multiple File Upload plugin <= 1.3.6.4 - File Upload Size Limit Bypass vulnerability

File Upload Size Limit Bypass vulnerability discovered by Sanjay Das in WordPress Drag and Drop Multiple File Upload plugin versions = 1.3.6.4. Solution Update the WordPress Drag and Drop Multiple File Upload – Contact Form 7 plugin to the latest available version at least 1.3.6.5...

4.3CVSS1.5AI score0.00543EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
added 2004/06/23 12:0 a.m.43 views

Multiple osTicket exploits!

ATTENTION ALL SITES USING OSTICKET. PLEASE DISABLE UPLOADS. June 17 2004. Multiple Problems with osTicket Software Data: OSTICKET, http://www.osticket.com/ "Need to test the system before you install? Then try our demo version of the latest release of osTicket. DEMO DISABLED" Note: When a softwar...

7.2AI score
Exploits0
Rows per page
Query Builder