Lucene search
K

6 matches found

NVD
NVD
added 2026/03/18 10:16 p.m.4 views

CVE-2026-32703

OpenProject is an open-source, web-based project management software. In versions prior to 16.6.9, 17.0.6, 17.1.3, and 17.2.1, the Repositories module did not properly escape filenames displayed from repositories. This allowed an attacker with push access into the repository to create commits wit...

9CVSS0.00189EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:58 p.m.12 views

CVE-2009-5043

burn allows file names to escape via mishandled quotation marks...

9.8CVSS6.8AI score0.0123EPSS
Exploits0References1
OSV
OSV
added 2025/04/17 9:57 p.m.8 views

CLSA-2025-1744927038 libreoffice: Fix of CVE-2023-6185

CVE-2023-6185: escape filename of embedded video to prevent execution of arbitrary GStreamer plugins...

8.8CVSS7.5AI score0.01017EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2019/10/31 3:28 p.m.19 views

CVE-2009-5043

Removed by vendor...

9.8CVSS9.5AI score0.0123EPSS
Exploits0
OSV
OSV
added 2008/06/24 12:0 a.m.7 views

DTSA-143-1 vim - filename escape vulnerability

Bulletin has no description...

9.3CVSS6.3AI score0.15044EPSS
Exploits0
FreeBSD
FreeBSD
added 2004/08/22 12:0 a.m.31 views

gaim -- malicious smiley themes

The Gaim Security Issues page documents a problem with installing smiley themes from an untrusted source: To install a new smiley theme, a user can drag a tarball from a graphical file manager, or a hypertext link to one from a web browser. When a tarball is dragged, Gaim executes a shell command...

7.5CVSS7.2AI score0.02336EPSS
Exploits0References1
Rows per page
Query Builder