Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/16 6:58 p.m.6 views

Security Bulletin: Go-getter may allow to arbitrary filesystem reads through git operations

Summary HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This vulnerability, CVE-2026-4660, is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and...

7.5CVSS5.8AI score0.00583EPSS
Exploits1Affected Software1
Github Security Blog
Github Security Blog
added 2025/11/28 6:32 a.m.7 views

Peppol-py is vulnerable to XXE attacks due to Saxon configuration

Peppol-py before 1.1.1 allows XXE attacks because of the Saxon configuration. When validating XML-based invoices, the XML parser could read files from the filesystem and expose their content to a remote host...

5CVSS6.9AI score0.00299EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2012-6607

Malware in sbrugna...

8.7CVSS6.4AI score0.01165EPSS
Exploits0References7
0day.today
0day.today
added 2018/02/10 12:0 a.m.58 views

NetEx HyperIP 6.1.0 Local File Inclusion Vulnerability

NetEx HyperIP version 6.1.0 suffers from a local file inclusion vulnerability. Title: NetEx HyperIP Local File Inclusion Vulnerability Advisory ID: KL-001-2018-005 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-005.txt 1. Vulnerability...

0.2AI score
Exploits0
Packet Storm
Packet Storm
added 2018/02/09 12:0 a.m.42 views

NetEx HyperIP 6.1.0 Local File Inclusion

KL-001-2018-005 : NetEx HyperIP Local File Inclusion Vulnerability Title: NetEx HyperIP Local File Inclusion Vulnerability Advisory ID: KL-001-2018-005 Publication Date: 2018.02.08 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2018-005.txt 1. Vulnerability Details Affecte...

6.6AI score
Exploits0
KoreLogic Security
KoreLogic Security
added 2018/02/08 12:0 a.m.23 views

NetEx HyperIP Local File Inclusion Vulnerability

Vulnerability Details Affected Vendor: NetEx Affected Product: HyperIP Affected Version: 6.1.0 Platform: Embedded Linux CWE Classification: CWE-73: External Control of File Name or Path, CWE-592: Authentication Bypass Issues Impact: Arbitrary Filesystem Reads Attack vector: HTTPS 2...

Exploits0Affected Software1
Rows per page
Query Builder