CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1005 matches found

CVE-2026-7247

A vulnerability has been found in D-Link DI-8100 16.07.26A1. Affected by this issue is the function fileextenasp of the file fileexten.asp of the component File Extension Handler. The manipulation of the argument Name leads to buffer overflow. Remote exploitation of the attack is possible. The...

8.6CVSS7.3AI score0.00091EPSS

Exploits1References1

Nuclei•added 3 days ago•25 views

Lightdash version <= 0.510.3 Arbitrary File Read

packages/backend/src/routers in Lightdash before 0.510.3 has insecure file endpoints, e.g., they allow .. directory traversal and do not ensure that an intended file extension .csv or .png is used. id: CVE-2023-35844 info: name: Lightdash version = 0.510.3 Arbitrary File Read author: dwisiswant0...

7.5CVSS7.1AI score0.9204EPSS

Exploits2References5

CVE•added 2026/05/25 9:15 a.m.•13 views

CVE-2026-9445

CVE-2026-9445 affects SourceCodester Simple POS and Inventory System 1.0. The vulnerability is in an unrestricted upload through the /admin/addproduct.php file (File Extension Handler); manipulating the image argument enables remote code upload. Impact and exploitation details indicate remote exp...

6.5CVSS6.2AI score0.0004EPSS

Exploits0References5

ATTACKERKB•added 2026/05/25 9:15 a.m.•6 views

CVE-2026-9445

A flaw has been found in SourceCodester Simple POS and Inventory System 1.0. Impacted is an unknown function of the file /admin/addproduct.php of the component File Extension Handler. This manipulation of the argument image causes unrestricted upload. Remote exploitation of the attack is possible...

6.5CVSS6.2AI score0.0004EPSS

Exploits0References5Affected Software1

CNNVD•added 2026/05/25 12:0 a.m.•5 views

SourceCodester Simple POS and Inventory System 代码问题漏洞

SourceCodester Simple POS and Inventory System is SourceCodester open source a simple POS and inventory system . SourceCodester Simple POS and Inventory System 1.0 version of the code problem vulnerability , the vulnerability stems from the File Extension Handler component /admin/addproduct.php...

6.5CVSS6.7AI score0.0004EPSS

Exploits0References6

RedhatCVE•added 2026/05/19 7:57 p.m.•8 views

CVE-2026-45315

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.3, the audio transcription upload endpoint takes the file extension from the user-supplied filename and saves the file under CACHEDIR/audio/transcriptions/.. The /cache/path route serve...

8.7CVSS5.8AI score0.00006EPSS

Exploits1References1

Vulnrichment•added 2026/05/15 9:26 p.m.•7 views

CVE-2026-45315 Open WebUI: Stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions

8.7CVSS5.8AI score0.00006EPSS

Exploits1References1

CVE•added 2026/05/15 9:26 p.m.•9 views

CVE-2026-45315

Open WebUI (self-hosted offline AI platform) is affected by CVE-2026-45315. Before version 0.9.3, the audio transcription upload endpoint accepts a user-supplied filename extension and saves the file under CACHE_DIR/audio/transcriptions, then serves /cache/{path} via FileResponse using the on-dis...

8.7CVSS5.8AI score0.00006EPSS

Exploits1References1Affected Software1

Cvelist•added 2026/05/15 9:26 p.m.•29 views

CVE-2026-45315 Open WebUI: Stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions

8.7CVSS0.00006EPSS

Exploits1References1

RedhatCVE•added 2026/05/08 8:21 p.m.•6 views

CVE-2026-41934

Vvveb before version 1.0.8.2 contains an authenticated remote code execution vulnerability in the admin code editor that allows low-privilege authenticated users to execute arbitrary code through insufficient file extension restrictions, with the uploaded payload then executable via subsequent...

8.8CVSS6.7AI score0.00423EPSS

Exploits0References1

CVE•added 2026/05/07 6:14 p.m.•7 views

CVE-2026-42214

Notepad Next (NotepadNext) before version 0.14 is affected by CVE-2026-42214. The vulnerability lies in detectLanguageFromExtension(), which inserts a file extension directly into a Lua script without sanitization. An attacker can craft a filename whose extension contains Lua code, which executes...

7.8CVSS5.9AI score0.00015EPSS

Exploits1References3Affected Software1

NVD•added 2026/04/29 5:16 p.m.•1 views

CVE-2026-7393

A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0. Affected is the function savemenu of the file /admin/adminclassnovo.php of the component File Extension Handler. Performing a manipulation of the argument img results in unrestricted upload. The attack is possible to be...

5.8CVSS0.0005EPSS

Exploits1References5

CVE•added 2026/04/29 5:0 p.m.•2 views

CVE-2026-7393

SourceCodester Pizzafy Ecommerce System 1.0 is affected in the admin_class_novo.php save_menu() function where the img upload parameter allows unrestricted uploads. The file path involved is Pizzafy/assets/img/, and an attacker with admin authentication could upload a crafted file (no validation ...

5.8CVSS5AI score0.0005EPSS

Exploits1References5

Vulnrichment•added 2026/04/29 5:0 p.m.•0 views

CVE-2026-7393 SourceCodester Pizzafy Ecommerce System File Extension admin_class_novo.php save_menu unrestricted upload

5.8CVSS4.8AI score0.0005EPSS

Exploits1References5

Cvelist•added 2026/04/29 5:0 p.m.•23 views

CVE-2026-7393 SourceCodester Pizzafy Ecommerce System File Extension admin_class_novo.php save_menu unrestricted upload

5.8CVSS0.0005EPSS

Exploits1References5

Positive Technologies•added 2026/04/29 12:0 a.m.•1 views

PT-2026-35959

A vulnerability was found in SourceCodester Pizzafy Ecommerce System 1.0. Affected is the function save menu of the file /admin/admin class novo.php of the component File Extension Handler. Performing a manipulation of the argument img results in unrestricted upload. The attack is possible to be...

5.8CVSS4.8AI score0.0005EPSS

Exploits1References6

NVD•added 2026/04/28 9:16 a.m.•2 views

CVE-2026-7247

8.6CVSS0.00091EPSS

Exploits1References5