44 matches found
EUVD-2011-5190
Malware in sbrugna...
EUVD-2019-0085
Malware in sbrugna...
EUVD-2023-2462
Malicious code in bioql PyPI...
EUVD-2024-42775
Malicious code in bioql PyPI...
EUVD-2025-14833
Malicious code in bioql PyPI...
EUVD-2023-27524
Malicious code in bioql PyPI...
CVE-2024-57189
In Erxes 1.6.2, an authenticated attacker can write to arbitrary files on the system using a Path Traversal vulnerability in the importHistoriesCreate GraphQL mutation handler...
CVE-2024-49366
Nginx UI is a web user interface for the Nginx web server. Nginx UI v2.0.0-beta.35 and earlier gets the value from the json field without verification, and can construct a value value in the form of ../../. Arbitrary files can be written to the server, which may result in loss of permissions...
CVE-2024-47151
Some Honor products are affected by file writing vulnerability, successful exploitation could cause code execution...
CVE-2024-51990
jj, or Jujutsu, is a Git-compatible VCS written in rust. In affected versions specially crafted Git repositories can cause jj to write files outside the clone. This issue has been addressed in version 0.23.0. Users are advised to upgrade. Users unable to upgrade should avoid cloning repos from...
CVE-2023-23424
Some Honor products are affected by file writing vulnerability, successful exploitation could cause code execution...
CVE-2023-23426
Some Honor products are affected by file writing vulnerability, successful exploitation could cause information disclosure...
CVE-2021-38573
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated...
CVE-2020-18439
An issue was discoverered in in function editsavef in framework/admin/tplcontrol.php in qinggan phpok 5.1, allows attackers to write arbitrary files or get a shell...
CVE-2018-12036
OWASP Dependency-Check before 3.2.0 allows attackers to write to arbitrary files via a crafted archive that holds directory traversal filenames...
CVE-2010-3104
Directory traversal vulnerability in DeskShare AutoFTP Manager 4.31, and probably earlier versions, allows remote FTP servers to write arbitrary files via a ".." dot dot backslash in a filename...
CVE-2025-27791
CVE-2025-27791 affects Collabora Online (LibreOffice-based online office suite). A path traversal flaw exists in handling the WOPI CheckFileInfo BaseFileName field, allowing an attacker-supplied response from a malicious WOPI server to enable arbitrary file writes on the host where Collabora runs...
CVE-2025-0799
IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow an authenticated user to write to an arbitrary file on the system during bar configuration deployment due to improper pathname limitations on restricted directories...
CVE-2022-36987
An issue was discovered in Veritas NetBackup 8.1.x through 8.1.2, 8.2, 8.3.x through 8.3.0.2, 9.x through 9.0.0.1, and 9.1.x through 9.1.0.1 and related NetBackup products. An attacker with authenticated access to a NetBackup Client could arbitrarily write files to a NetBackup Primary server...
CVE-2024-47151
Some Honor products are affected by file writing vulnerability, successful exploitation could cause code execution...