Lucene search
K

60 matches found

RubySec
RubySec
added 2026/04/02 12:0 a.m.24 views

Rack has a root directory disclosure via unescaped regex interpolation in Rack::Directory

Summary Rack::Directory interpolates the configured root path directly into a regular expression when deriving the displayed directory path. If root contains regex metacharacters such as +, , or ., the prefix stripping can fail and the generated directory listing may expose the full filesystem pa...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1Affected Software1
Amazon
Amazon
added 2026/04/01 12:0 a.m.7 views

Medium: runfinch-finch

Issue Overview: Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect OIDC identity. Prior to 1.8.5, Fulcio's metaRegex function uses unanchored regex, allowing attackers to bypass MetaIssuer URL validation and trigger SSRF to arbitrary internal services...

7.5CVSS6.9AI score0.00728EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/03/27 10:51 p.m.5 views

CVE-2026-33682

Streamlit is a data oriented application development framework for python. Streamlit Open Source versions prior to 1.54.0 running on Windows hosts have an unauthenticated Server-Side Request Forgery SSRF vulnerability. The vulnerability arises from improper validation of attacker-supplied...

4.8CVSS5.8AI score0.00282EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/26 8:58 p.m.7 views

EUVD-2026-16416

Fireshare facilitates self-hosted media and link sharing. In version 1.5.1, an authenticated path traversal vulnerability in Fireshare’s chunked upload endpoint allows an attacker to write arbitrary files outside the intended upload directory. The checkSum multipart field is used directly in...

7.1CVSS5.9AI score0.00431EPSS
Exploits0References2
CNVD
CNVD
added 2026/03/26 12:0 a.m.6 views

OpenClaw Approves Bypass Vulnerability

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an approval bypass vulnerability that can be exploited by an attacker to execute commands from an unexpected file system location by rebinding a writable parent symbolic link...

6.9CVSS5.9AI score0.00095EPSS
Exploits0
Snyk
Snyk
added 2026/03/03 11:0 p.m.2 views

Arbitrary Code Injection

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Arbitrary Code Injection via the transform module path resolution process. An attacker can execute arbitrary JavaScript code with gateway-process privileges by causing a symlinked entry t...

7.3CVSS6AI score
Exploits0References2
OSV
OSV
added 2026/02/18 10:16 p.m.4 views

CVE-2019-25399

IPFire 2.21 Core Update 127 contains multiple stored cross-site scripting vulnerabilities in the extrahd.cgi script that allow attackers to inject malicious scripts through the FS, PATH, and UUID parameters. Attackers can submit POST requests with script payloads in these parameters to execute...

6.4CVSS6AI score0.00232EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/03 12:0 a.m.8 views

EUVD-2025-206698

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 2200, 1330, 1380, 1480, 1580, W920, W930, and W1000. There is unbounded memory allocation via a large buffer in a /proc/driver/unifi0/uapsd write operation, leading to kerne...

6.2CVSS5.6AI score0.00152EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/29 3:38 a.m.5 views

CVE-2026-25067 SmarterTools SmarterMail < Build 9518 Unauthenticated background-of-the-day Path Coercion

SmarterTools SmarterMail versions prior to build 9518 contain an unauthenticated path coercion vulnerability in the background-of-the-day preview endpoint. The application base64-decodes attacker-supplied input and uses it as a filesystem path without validation. On Windows systems, this allows U...

6.9CVSS5.9AI score0.00283EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/12/25 9:1 a.m.5 views

nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails.

...

5.5CVSS5.4AI score0.00183EPSS
Exploits0
EUVD
EUVD
added 2025/12/19 10:53 p.m.7 views

EUVD-2025-204581

External Control of File Name or Path in Langflow...

7.1CVSS6.3AI score0.03631EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/19 5:10 p.m.28 views

CVE-2025-68478 Langflow Vulnerable to External Control of File Name or Path

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.0, if an arbitrary path is specified in the request body's fspath, the server serializes the Flow object into JSON and creates/overwrites a file at that path. There is no path restriction,...

7.1CVSS0.03631EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.5 views

PT-2025-52500

Name of the Vulnerable Software and Affected Versions Langflow versions prior to 1.7.0 Description Langflow is a tool for building and deploying AI-powered agents and workflows. Before version 1.7.0, specifying an arbitrary path in the request body's fs path allows server-side file creation or...

7.1CVSS6.5AI score0.03631EPSS
Exploits1References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-17852

Malware in sbrugna...

8.8CVSS8.7AI score0.01509EPSS
Exploits0References2
Atlassian
Atlassian
added 2025/09/26 7:31 a.m.21 views

Path Traversal (Arbitrary Write) in Jira Software Data Center and Server

This High severity Path Traversal Arbitrary Write vulnerability was introduced in versions: 9.12.0, 10.3.0 and remain present in 11.0.0 of Jira Software Data Center and Server. This Path Traversal Arbitrary Write vulnerability, with a CVSS Score of 8.7, allows an attacker to modify any filesystem...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:23 p.m.8 views

CVE-2020-26269

In TensorFlow release candidate versions 2.4.0rc, the general implementation for matching filesystem paths to globbing pattern is vulnerable to an access out of bounds of the array holding the directories. There are multiple invariants and preconditions that are assumed by the parallel...

7.5CVSS6.7AI score0.00663EPSS
Exploits1
Veracode
Veracode
added 2024/09/02 5:51 a.m.6 views

NULL Pointer Dereference

libpcap is vulnerable to a NULL pointer dereference. The vulnerability is due to the pcapfindalldevsex function not checking the return value of opendir and passing a NULL value to readdir when an invalid filesystem path is provided...

4.4CVSS6.5AI score0.0022EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2024/08/31 12:15 a.m.21 views

CVE-2024-8006

Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcapfindalldevsex. One of the function arguments can be a filesystem path, which normally means a directory with...

4.4CVSS6.8AI score0.0022EPSS
Exploits0References1
OSV
OSV
added 2024/07/08 7:15 p.m.5 views

CVE-2024-6580

The /n software IPWorks SSH library SFTPServer component can be induced to make unintended filesystem or network path requests when loading a SSH public key or certificate. To be exploitable, an application calling the SFTPServer component must grant user access without verifying the SSH public k...

6.5CVSS7.5AI score0.75812EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2024/07/08 12:0 a.m.7 views

PT-2024-37734 · /N · Ipworks Ssh

Name of the Vulnerable Software and Affected Versions: /n software IPWorks SSH versions prior to 22.0.8945 /n software IPWorks SSH versions prior to 24.0.8945 Description: The /n software IPWorks SSH library SFTPServer component can be induced to make unintended filesystem or network path request...

9.8CVSS9.5AI score0.75812EPSS
Exploits3References6
Rows per page
Query Builder