Lucene search
K

7 matches found

NVD
NVD
added 6 hours ago5 views

CVE-2026-49145

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

7.5CVSS
Exploits0References2
Cvelist
Cvelist
added 6 hours ago6 views

CVE-2026-49145 App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

Exploits0References1
EUVD
EUVD
added 6 hours ago3 views

EUVD-2026-42288

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

7.5CVSS6AI score
Exploits0References1
AlpineLinux
AlpineLinux
added 6 hours ago9 views

CVE-2026-49145

App::Ack versions through 3.10.0 for Perl read arbitrary files via --files-from in a project .ackrc. ack searches up the directory hierarchy from the current directory for a project .ackrc and loads its options. The project-source option blocklist in App::Ack::ConfigLoader does not include...

7.5CVSS6AI score
Exploits0
CVE
CVE
added 6 hours ago21 views

CVE-2026-49145

CVE-2026-49145 affects App::Ack for Perl up to version 3.10.0. The flaw arises because ack searches upward for a project .ackrc and loads its options; the project-source blocklist did not include --files-from, allowing a project .ackrc to set --files-from to a path whose listed files ack will rea...

7.5CVSS6AI score
Exploits0References2
CVE
CVE
added 2026/04/22 4:7 p.m.26 views

CVE-2026-35348

CVE-2026-35348 affects the sort utility in uutils coreutils. Using --files0-from with inputs containing non-UTF-8 filenames triggers a process panic because the implementation enforces UTF-8 and uses expect(), causing a crash on valid but non-UTF-8 paths. This diverges from GNU sort, which treats...

5.5CVSS5.7AI score0.00134EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.6 views

GPT Academic 安全漏洞

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. A server-side request forgery vulnerability exists in the GPT Academic crazyutils.getfilesfromeverything function, which can be exploited by an attacker to cause unauthorized access to...

7.7CVSS6.8AI score0.00616EPSS
Exploits1References1
Rows per page
Query Builder