CVE-2026-5535

A security flaw has been discovered in FedML-AI FedML up to 0.8.9. This impacts an unknown function of the file FileUtils.java of the component MQTT Message Handler. Performing a manipulation of the argument dataSet results in path traversal. The attack is possible to be carried out remotely. The...

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the plugin installation process on CI test instances with default admin credentials. An attacker can execute arbitrary code and access sensitive configuration data by uploading a malicious plugin after changin...

EUVD-2011-2632

Malware in sbrugna...

EUVD-2003-0844

Malware in sbrugna...

EUVD-2003-0845

Malware in sbrugna...

EUVD-2011-1021

Malware in sbrugna...

EUVD-2022-3463

Malicious code in bioql PyPI...

CVE-2024-48236

An issue in ofcms 1.1.2 allows a remote attacker to execute arbitrary code via the FileOutputStream function in the write String method of the ofcms-admin\src\main\java\com\ofsoft\cms\core\uitle\FileUtils.java file...

CVE-2023-21093

In extractRelativePath of FileUtils.java, there is a possible way to access files in a directory belonging to other applications due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

[SECURITY] Fedora 39 Update: coreutils-9.3-5.fc39

These are the GNU core utilities. This package is the combination of the old GNU fileutils, sh-utils, and textutils packages...

PT-2023-25258 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a path traversal error in the computeValuesFromData function of FileUtils.java. This error could allow inserting files into other apps' external private directories,...

ASB-A-276898626

In computeValuesFromData of FileUtils.java, there is a possible way to insert files to other apps' external private directories due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

SUSE CVE-2002-0435

Race condition in the recursive 1 directory deletion and 2 directory move in GNU File Utilities fileutils 4.1 and earlier allows local users to delete directories as the user running fileutils by moving a low-level directory to a higher level as it is being deleted, which causes fileutils to chdi...

SUSE CVE-2011-1004

The FileUtils.removeentrysecure method in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, 1.8.8dev, 1.9.1 through 1.9.1-430, 1.9.2 through 1.9.2-136, and 1.9.3dev allows local users to delete arbitrary files via a symlink attack...

PT-2022-27789 · Unknown · Metersphere

Name of the Vulnerable Software and Affected Versions: MeterSphere versions prior to 2.5.1 Description: The issue allows users to upload a file without validating the file name, potentially leading to uploading files to any path if the file name in the upload request is falsified. This is due to ...

SAMSUNG Mobile devices 路径遍历漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices UriFileUtils versions prior to 4.3.14.39, which stems from a path traversal vulnerability in...

Fedora: Security Advisory for golang-github-mrunalp-fileutils (FEDORA-2022-37aef44d1e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 36 Update: golang-github-mrunalp-fileutils-0.5.0-6.fc36

Collection of utilities for file manipulation in Go...

Fedora: Security Advisory for golang-github-mrunalp-fileutils (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: golang-github-mrunalp-fileutils-0.5.0-5.fc35

Collection of utilities for file manipulation in Go...