Lucene search
K

119 matches found

Vulnrichment
Vulnrichment
added 2025/07/07 12:21 p.m.2 views

CVE-2025-6209 Arbitrary File Read through Path Traversal in run-llama/llama_index

A path traversal vulnerability exists in run-llama/llamaindex versions 0.12.27 through 0.12.40, specifically within the encodeimage function in genericutils.py. This vulnerability allows an attacker to manipulate the imagepath input to read arbitrary files on the server, including sensitive syste...

7.5CVSS6.9AI score0.00545EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/07/07 12:21 p.m.12 views

CVE-2025-6209 Arbitrary File Read through Path Traversal in run-llama/llama_index

A path traversal vulnerability exists in run-llama/llamaindex versions 0.12.27 through 0.12.40, specifically within the encodeimage function in genericutils.py. This vulnerability allows an attacker to manipulate the imagepath input to read arbitrary files on the server, including sensitive syste...

7.5CVSS0.00545EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:43 a.m.8 views

CVE-2023-5120

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image file path parameter in versions up to, and including, 0.9.89 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with...

4.8CVSS6.1AI score0.00328EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:32 a.m.6 views

CVE-2023-1381

The WP Meta SEO WordPress plugin before 4.5.5 does not validate image file paths before attempting to manipulate the image files, leading to a PHAR deserialization vulnerability. Furthermore, the plugin contains a gadget chain which may be used in certain configurations to achieve remote code...

8.8CVSS7.6AI score0.01689EPSS
Exploits2References1
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.6 views

PHPGurukul Boat Booking System 注入漏洞

PHPGurukul Boat Booking System is a boat booking system from PHPGurukul. An injection vulnerability exists in version 1.0 of the PHPGurukul Boat Booking System, which stems from SQL injection due to incorrect manipulation of the parameter ID in the file /admin/change-image.php...

8.8CVSS6.9AI score0.00356EPSS
Exploits1References5
Snyk
Snyk
added 2025/02/14 5:41 p.m.4 views

Directory Traversal

Overview label-studio is a Label Studio annotation tool Affected versions of this package are vulnerable to Directory Traversal via the download function due to improper input validation when processing image references during task exports. . An attacker can access files outside the intended...

8.7CVSS7.7AI score0.00739EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/09/05 12:0 a.m.11 views

PT-2024-7419 · Splunk · Splunk Enterprise

Name of the Vulnerable Software and Affected Versions: Splunk Enterprise versions 9.1.6, 9.2.3, and 9.3.0 Description: A low-privileged user without the "admin" or "power" Splunk roles could view images on the machine that runs Splunk Enterprise by using the PDF export feature in Splunk classic...

4.3CVSS7.2AI score0.00349EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2024/03/06 12:0 a.m.11 views

PT-2024-20543 · Unknown · Casaos-Userservice

Name of the Vulnerable Software and Affected Versions: CasaOS-UserService versions prior to 0.4.7 Description: The issue concerns a path traversal vulnerability in the UserService API, which allows an unauthorized actor to access any file on the system due to insufficient path filtering for user...

9.8CVSS7.4AI score0.00971EPSS
Exploits1References9
Veracode
Veracode
added 2023/11/29 8:2 a.m.21 views

Arbitrary File Read

com.bstek.ureport/ureport2-core is vulnerable to Arbitrary File Read. The vulnerability is due to a lack of image path santization. The image path provided by the user is directly append to the obtained path into the FileInputStream method. This allows an attacker to submit malicious data, leadin...

7.5CVSS7.1AI score0.00948EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/27 1:0 a.m.17 views

CVE-2023-6307 jeecgboot JimuReport image path traversal

A vulnerability classified as critical was found in jeecgboot JimuReport up to 1.6.1. Affected by this vulnerability is an unknown functionality of the file /download/image. The manipulation of the argument imageUrl leads to relative path traversal. The attack can be launched remotely. The exploi...

6.5CVSS9.8AI score0.0084EPSS
Exploits0References3
OSV
OSV
added 2023/10/20 7:15 a.m.5 views

CVE-2023-5120

The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image file path parameter in versions up to, and including, 0.9.89 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with...

4.8CVSS7.2AI score0.00328EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/28 12:0 a.m.7 views

PT-2023-28907 · Unknown · Shokoserver

Name of the Vulnerable Software and Affected Versions: ShokoServer affected versions not specified Description: The issue affects ShokoServer, a media server for organizing anime. In affected versions, the "/api/Image/WithPath" endpoint is accessible without authentication and is supposed to retu...

8.6CVSS8.9AI score0.08147EPSS
Exploits1References10
VulnCheck KEV
VulnCheck KEV
added 2023/07/05 12:0 a.m.6 views

VulnCheck KEV: CVE-2022-31374

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file...

9.8CVSS7.6AI score0.0241EPSS
Exploits1References1
OSV
OSV
added 2023/04/10 3:15 p.m.5 views

CVE-2023-1381

The WP Meta SEO WordPress plugin before 4.5.5 does not validate image file paths before attempting to manipulate the image files, leading to a PHAR deserialization vulnerability. Furthermore, the plugin contains a gadget chain which may be used in certain configurations to achieve remote code...

8.8CVSS7.5AI score0.01689EPSS
Exploits2References2
CNNVD
CNNVD
added 2023/04/10 12:0 a.m.6 views

WordPress plugin WP Meta SEO 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

8.8CVSS8.5AI score0.01689EPSS
Exploits2References3
Positive Technologies
Positive Technologies
added 2023/04/10 12:0 a.m.10 views

PT-2023-16944 · WordPress · Wp Meta Seo

Name of the Vulnerable Software and Affected Versions: WP Meta SEO WordPress plugin versions prior to 4.5.5 Description: The issue arises from the plugin not validating image file paths before attempting to manipulate the image files, leading to a PHAR deserialization vulnerability. Additionally,...

8.8CVSS9.9AI score0.01689EPSS
Exploits2References7
OSV
OSV
added 2022/06/21 1:15 p.m.3 views

CVE-2022-31374

An arbitrary file upload vulnerability /images/background/1.php in of SolarView Compact 6.0 allows attackers to execute arbitrary code via a crafted php file...

9.8CVSS7.6AI score0.0241EPSS
Exploits1References1
OSV
OSV
added 2022/06/02 2:15 p.m.3 views

CVE-2022-30804

elitecms v1.01 is vulnerable to Delete any file via /admin/deleteimage.php?file=...

6.5CVSS5.8AI score0.01047EPSS
Exploits1References1
OSV
OSV
added 2022/05/17 4:12 a.m.21 views

GHSA-WCJ4-FF9M-5R7G ImpressCMS Path Traversal to Arbitrary File Delete

Absolute path traversal vulnerability in htdocs/libraries/image-editor/image-edit.php in ImpressCMS before 1.3.6 allows remote attackers to delete arbitrary files via a full pathname in the imagepath parameter in a cancel action...

6.4CVSS6.5AI score0.03711EPSS
Exploits3References6
ATTACKERKB
ATTACKERKB
added 2022/05/13 2:15 p.m.4 views

CVE-2022-30367

Air Cargo Management System v1.0 is vulnerable to file deletion via /acms/classes/Master.php?f=deleteimg...

6.5CVSS6.6AI score0.00832EPSS
Exploits1References2
Rows per page
Query Builder