EUVD-2026-19017

A security flaw has been discovered in FedML-AI FedML up to 0.8.9. This impacts an unknown function of the file FileUtils.java of the component MQTT Message Handler. Performing a manipulation of the argument dataSet results in path traversal. The attack is possible to be carried out remotely. The...

CVE-2026-0571

A security flaw has been discovered in yeqifu warehouse up to aaf29962ba407d22d991781de28796ee7b4670e4. Affected by this issue is the function createResponseEntity of the file warehouse\src\main\java\com\yeqifu\sys\common\AppFileUtils.java. The manipulation of the argument path results in path...

warehouse 路径遍历漏洞

warehouse is a spring boot based logistics management system for small and medium sized warehouses by yeqifu individual developers. warehouse has a path traversal vulnerability, the vulnerability stems from the wrong operation of the parameter path in the file...

EUVD-2002-0432

Malware in sbrugna...

EUVD-2025-30132

Malicious code in bioql PyPI...

Malicious code in @teselagen/file-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7da1a31ac60a5206e526134aa3bb58f83fa6e2d32f66cacf06f26a91de3b71f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

@teselagen/ove (>=0.0.18 <=0.8.25), @teselagen/ui (>=0.0.23 <=0.10.16) +4 more potentially affected by unknown CVE via @teselagen/file-utils (>=0.2.1 <=0.3.20)

@teselagen/file-utils NPM version =0.2.1, =0.0.18, =0.0.23, =15.0.0, =18.3.6, =30.14.19, =30.15.8 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENFILEUTILS-12761783...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...

[SECURITY] Fedora 42 Update: coreutils-9.6-4.fc42

These are the GNU core utilities. This package is the combination of the old GNU fileutils, sh-utils, and textutils packages...

The vulnerability of the `testngXmlExistsInJar` function (testng-core/src/main/java/org/testng/JarFileUtils.java) in the TestNG testing framework allows a attacker to execute arbitrary code.

The vulnerability of the testngXmlExistsInJar function testng-core/src/main/java/org/testng/JarFileUtils.java in the TestNG testing framework is related to an incorrect path limitation for the restricted access directory. Exploiting this vulnerability could allow a malicious actor, operating...

Amaze File Utilities License Issue Vulnerability

Team Amaze Amaze File Utilities is an open source application from Team Amaze, Inc. to view, manage, and analyze internally stored media files using the built-in media player without any advertisements and with a nice user interface. A License Issue vulnerability exists in Amaze File Utilities...

编号撤回

glib2 is a general-purpose, portable utility library open-sourced by GNOME. Many useful data types, macros, type conversions, string utilities, file utilities, main loop abstractions, etc. are provided. This CVE number has been withdrawn...

Google Android 路径遍历漏洞

Google Android is a Linux-based open source operating system from Google. An elevation of privilege vulnerability exists in Google Android, which stems from the FileUtils.java component's extractRelativePath store failing to correctly filter special elements in the path of a resource or file, whi...

OpenKM 安全漏洞

OpenKM is a document management system from OpenKM Spain. The system provides features such as version control, file history and file sharing. A security vulnerability exists in OpenKM versions prior to 6.3.11, which originates from an unknown function getFileExtension in the...

Ruby: Symlink race condition by removing directory trees in fileutils module

The FileUtils.removeentrysecure method in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, 1.8.8dev, 1.9.1 through 1.9.1-430, 1.9.2 through 1.9.2-136, and 1.9.3dev allows local users to delete arbitrary files via a symlink attack...

Sun Solaris multiple security vulnerabilities

Crossite scripting in ftpd, DoS against file utilities, buffer overflow in LIBC functions...

file utilities integer overflow

No description provided...

CVE-2002-0435

Race condition in the recursive 1 directory deletion and 2 directory move in GNU File Utilities fileutils 4.1 and earlier allows local users to delete directories as the user running fileutils by moving a low-level directory to a higher level as it is being deleted, which causes fileutils to chdi...

CVE-2002-0435

CVE-2002-0435 describes a race condition in GNU fileutils (fileutils) 4.1 and earlier involving recursive directory deletion and directory moves. The issue allows local users to delete directories as the user running fileutils by moving a low-level directory to a higher level while deletion occur...

CVE-2002-0435

Race condition in the recursive 1 directory deletion and 2 directory move in GNU File Utilities fileutils 4.1 and earlier allows local users to delete directories as the user running fileutils by moving a low-level directory to a higher level as it is being deleted, which causes fileutils to chdi...