Lucene search
K

11 matches found

OSV
OSV
added 2 days ago3 views

CVE-2026-15521 makafeli n8n-workflow-builder update_node_from_file server.cjs path traversal

A vulnerability was identified in makafeli n8n-workflow-builder up to 0.11.0. Affected is an unknown function of the file build/server.cjs of the component updatenodefromfile. The manipulation of the argument filePath leads to path traversal. An attack has to be approached locally. The exploit is...

4.8CVSS5.6AI score0.00137EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/01/07 9:9 a.m.6 views

CVE-2024-2807

A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.20multi. This vulnerability affects the function formExpandDlnaFile of the file /goform/expandDlnaFile. The manipulation of the argument filePath leads to stack-based buffer overflow. The attack can be initiated...

9.8CVSS9.6AI score0.01372EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/24 6:34 p.m.10 views

CVE-2025-13564

A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...

7.1CVSS6.7AI score0.00329EPSS
Exploits1References1
EUVD
EUVD
added 2025/11/23 9:30 p.m.6 views

EUVD-2025-198583

A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...

5.5CVSS6.3AI score0.00329EPSS
Exploits1References6
OSV
OSV
added 2025/11/23 7:15 p.m.2 views

CVE-2025-13564

A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...

7.1CVSS5.6AI score0.00329EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/23 6:32 p.m.5 views

CVE-2025-13564 SourceCodester Pre-School Management System FilehelperController.php removefile denial of service

A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...

5.5CVSS6.5AI score0.00329EPSS
Exploits1References5
CVE
CVE
added 2025/11/23 6:32 p.m.13 views

CVE-2025-13564

Affected product: SourceCodester Pre-School Management System 1.0. The vulnerability is in the function removefile of app/controllers/FilehelperController.php; manipulating the filepath argument can cause denial of service. Exploitation is described as remote with public exploit released. Multipl...

7.1CVSS6.5AI score0.00329EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-8642

Malicious code in bioql PyPI...

7.5CVSS4.9AI score0.00704EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/25 3:9 p.m.13 views

CVE-2025-5114

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor=edit=cGhhcjovLy9ldGMvcGFzc3dk=edit of the component Committer. The manipulation of the argument filePath leads to...

6.5CVSS7AI score0.00426EPSS
Exploits1References1
NVD
NVD
added 2025/05/23 3:15 p.m.22 views

CVE-2025-5114

A vulnerability has been found in easysoft zentaopms 21.520250307 and classified as critical. This vulnerability affects the function Edit of the file /index.php?m=editor&f=edit&filePath=cGhhcjovLy9ldGMvcGFzc3dk&action=edit of the component Committer. The manipulation of the argument filePath lea...

9.1CVSS0.00426EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2025/03/19 9:30 p.m.11 views

OpenShift Console Has a Path Traversal Vulnerability

A flaw was found in the OpenShift Console, an endpoint for plugins to serve resources in multiple languages: /locales/resources.json. This endpoint's lng and ns parameters are used to construct a filepath in pkg/plugins/handlers unsafely.goL112 Because of this unsafe filepath construction, an...

4.3CVSS6.5AI score0.00465EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder