CVE-2026-45671 Open WebUI: shared-chat branch ignores access_type, allowing unauthorized file deletion

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, any authenticated user can permanently delete files owned by other users via DELETE /api/v1/files/id when the target file is referenced in any shared chat. The hasaccesstofile...

PT-2026-35994

VideoFlow Digital Video Protection DVP 2.10 contains an authenticated directory traversal vulnerability that allows authenticated attackers to disclose arbitrary files by injecting path traversal sequences in the ID parameter. Attackers can submit requests to downloadsys.pl, download xml.pl,...

SUSE CVE-2026-4980

A local file disclosure vulnerability in the XInclude processing component of Inkscape 1.1 before 1.3 allows a remote attacker to read local files via a crafted SVG file containing malicious xi:include tags...

CVE-2026-32030

OpenClaw versions prior to 2026.2.19 contain a path traversal vulnerability in the stageSandboxMedia function that accepts arbitrary absolute paths when iMessage remote attachment fetching is enabled. An attacker who can tamper with attachment path metadata can disclose files readable by the...

PT-2026-25816

Name of the Vulnerable Software and Affected Versions ZwickRoell Test Data Management versions prior to 3.0.8 Description The software contains a local file inclusion issue in the /server/node upgrade srv.js endpoint. An attacker can provide directory traversal sequences through the firmware...

External Control of File Name or Path

Overview mistral-dashboard is a Mistral dashboard Affected versions of this package are vulnerable to External Control of File Name or Path through the 'Create Workbook' feature that may result in disclosure of arbitrary local files content. An attacker can access arbitrary local files by...

CVE-2025-12047

Lenovo Scanner Pro is reported to have a vulnerability that, under certain conditions during an internal security assessment, could allow an attacker on the same logical network to disclose sensitive user files from the application. The available documents provide a high-level impact description ...

PT-2025-34950 · Sangfor · Iam +2

Name of the Vulnerable Software and Affected Versions: Sangfor Behavior Management System affected versions not specified Description: The Sangfor Behavior Management System also referred to as DC Management System contains an XML external entity XXE injection vulnerability in the /src/sangforind...

IntelliJ IDEA < 2025.2 Multiple Vulnerabilities (macOS)

The version of IntelliJ IDEA installed on the remote host is prior to 2025.2. It is, therefore, affected by a multiple vulnerabilities as referenced in the advisory. - In JetBrains IntelliJ IDEA before 2025.2 credentials disclosure was possible via remote reference. CVE-2025-57727 - In JetBrains...

The vulnerability of the XtremIO X2 TechAdvisor management and optimization tool, related to the disclosure of information through log files, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the XtremIO X2 TechAdvisor management and optimization tools is related to the disclosure of information through log files. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

Yelp 安全漏洞

Yelp is a website by Yelp Inc. where users rate restaurants and other establishments. A security vulnerability exists in Yelp that originates in the Gnome User Help application that allows the help documentation to execute arbitrary scripts, potentially leading to the disclosure of user files...

PhpSpreadsheet 安全漏洞

PhpSpreadsheet is an open source PHP library from PHPOffice for reading and writing spreadsheet files. A security vulnerability exists in PhpSpreadsheet. An attacker exploited the vulnerability to disclose server files and sensitive information by serving specially crafted worksheets...

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

Debian dla-3872 : glance - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-3872 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3872-1 [email protected] https://www.debian.org/lts/security/...

CVE-2024-25711

diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. Contents of any file, such as ../.ssh/idrsa, may be disclosed to an attacker. This occurs because the value of the gpg --use-embedded-filenames option is trusted...

CVE-2023-44483

All versions of Apache Santuario - XML Security for Java prior to 2.2.6, 2.3.4, and 3.0.3, when using the JSR 105 API, are vulnerable to an issue where a private key may be disclosed in log files when generating an XML Signature and logging with debug level is enabled. Users are recommended to...

Acronis Cyber Protect Security Vulnerability

Acronis Cyber Protect is an all-in-one cyber protection solution for business and enterprise from Acronis Singapore. It combines backup, anti-malware, cybersecurity and endpoint management features such as vulnerability assessment, URL filtering, patch management, and more. A security vulnerabili...

PT-2023-18071 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions prior to the August 2023 ASB Description: The issue is related to a confused deputy in the openContentUri method of ActivityManagerService.java, allowing a third-party app to obtain restricted files. This could lead to local...

CVE-2023-38633

A directory traversal problem in the URL decoder of librsvg before 2.56.3 could be used by local or remote attackers to disclose files on the local filesystem outside of the expected area, as demonstrated by href=".?../../../../../../../../../../etc/passwd" in an xi:include element...

WAVLINK WN531G3 安全漏洞

The WAVLINK WN531G3 is a wireless router from China's RuiYin Technology WAVLINK. The WAVLINK WN531G3 M31G3.V5030.201204 version and M31G3.V5030.200325 version contain an access control error vulnerability that can be exploited by an attacker to download configuration data and log files...