Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm
Packet Stormadded 2026/04/20 12:0 a.m.38 views

📄 Remote Sunrise Helper for Windows 2026.14 Arbitrary File Read

Remote Sunrise Helper for Windows 2026.14 suffers from an unauthenticated file read vulnerability. !/usr/bin/env python3 Exploit Title: Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File Read Date: 2026-04-20 Exploit Author: Chokri Hammedi Software: https://rs.ltd/latest.php?os=win...

5.8AI score
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2025-21180

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.00289EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/07/11 5:32 p.m.10 views

CVE-2025-7452 kone-net go-chat Endpoint file_controller.go GetFile path traversal

A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It has been declared as critical. This vulnerability affects the function GetFile of the file go-chat/api/v1/filecontroller.go of the component Endpoint. The manipulation of the argument fileName leads t...

6.5CVSS0.00289EPSS
Exploits0References5
CVE
CVEadded 2025/07/11 5:32 p.m.21 views

CVE-2025-7452

CVE-2025-7452 affects kone-net go-chat (Endpoint component). The GetFile function in go-chat/api/v1/file_controller.go is vulnerable to path traversal via the fileName argument, allowing remote exploitation. Exploitation is disclosed publicly; credits indicate a Proof-of-Concept. The rolling-rele...

6.5CVSS6.3AI score0.00289EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/05/22 9:18 p.m.4 views

CVE-2021-32961

A getfile function in MDT AutoSave versions prior to v6.02.06 enables a user to supply an optional parameter, resulting in the processing of a request in a special manner. This can result in the execution of an unzip command and place a malicious .exe file in one of the locations the function loo...

7.5CVSS7AI score0.00354EPSS
Exploits0
CNNVD
CNNVDadded 2024/01/13 12:0 a.m.2 views

Austin security breach

Austin is a message push platform. A security vulnerability exists in ZhongFuCheng3y Austin version 1.0, which originates from a security issue in the getFile function in the com/java3y/austin/web/controller/MaterialController.java in the component Upload Material Menu. function in the component...

9.8CVSS6.7AI score0.00092EPSS
Exploits1References4
Veracode
Veracodeadded 2022/11/08 2:30 a.m.33 views

Path Traversal

apache ivy is vulnerable to path traversal. The vulnerability exists due to lack of file path pattern checks in the getCachedDataFile function of DefaultRepositoryCacheManager.java, allowing an attacker to overwrite files outside of the local cache by using ../ in artifact coordinates...

7.5CVSS8AI score0.0104EPSS
Exploits0References4Affected Software2
Prion
Prionadded 2022/04/01 11:15 p.m.16 views

Design/Logic Flaw

A getfile function in MDT AutoSave versions prior to v6.02.06 enables a user to supply an optional parameter, resulting in the processing of a request in a special manner. This can result in the execution of an unzip command and place a malicious .exe file in one of the locations the function loo...

5CVSS8.1AI score0.00354EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder