PT-2026-29301

Name of the Vulnerable Software and Affected Versions UXGROUP LLC Cast to TV Screen Mirroring version 2.2.77 Description A file overwrite issue exists in UXGROUP LLC Cast to TV Screen Mirroring version 2.2.77. Attackers can overwrite critical internal files through the file import process. This...

CVE-2026-30283

An arbitrary file overwrite vulnerability in PEAKSEL D.O.O. NIS Animal Sounds and Ringtones v1.3.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

Zora 安全漏洞

Zora is a blockchain platform developed by Zora Company, designed for the issuance and trading of digital assets. Version 2.60.0 of Zora contains a security vulnerability. This vulnerability stems from an issue with arbitrary file overwriting during the file import process, which could lead to...

DeftPDF Document Translator 安全漏洞

DeftPDF Document Translator is an online tool developed by DeftPDF in the United States, which supports multilingual document translation and format conversion. Version 54.0 of DeftPDF Document Translator contains a security vulnerability. This vulnerability stems from an issue where arbitrary...

CMS Made Simple（CMSMS） 路径遍历漏洞

CMS Made Simple CMSMS is an open-source content management system developed by the Cmsms team. This system supports role-based permission management, wizard-based installation and update mechanisms, and intelligent caching features. Version 2.2.22 and earlier of CMS Made Simple contained a path...

CVE-2026-30309

InfCode's terminal auto-execution module contains a critical command filtering vulnerability that renders its blacklist security mechanism completely ineffective. The predefined blocklist fails to cover native high-risk commands in Windows PowerShell such as powershell, and the matching algorithm...

CVE-2026-30281

An arbitrary file overwrite vulnerability in MaruNuri LLC v2.0.23 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

CVE-2026-30286

CVE-2026-30286 : An arbitrary file overwrite vulnerability in Funambol, Inc. Zefiro Cloud v32.0.2026011614 allows an attacker to overwrite critical internal files via the file import process, potentially yielding arbitrary code execution or information exposure. Affected component: the Zefiro Clo...

CVE-2026-30280

The vulnerability affects the video player component in Play All Videos v1.0.135 from RAREPROB SOLUTIONS PRIVATE LIMITED. CVE-2026-30280 describes an arbitrary file overwrite via the file import process, allowing an attacker to overwrite critical internal files. This could lead to arbitrary code ...

CVE-2026-30282

An arbitrary file overwrite vulnerability in UXGROUP LLC Cast to TV Screen Mirroring v2.2.77 allows attackers to overwrite critical internal files via the file import process, leading to arbtrary code execution or information exposure...

Linux Distros Unpatched Vulnerability : CVE-2026-34881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenStack Glance before 29.1.1, 30.x before 30.1.1, and 31.0.0 is affected by Server-Side Request Forgery SSRF. By use of HTTP redirects, an authenticated user...

CVE-2026-30284

CVE-2026-30284 affects UXGROUP LLC Voice Recorder v10.0. The vulnerability is an arbitrary file overwrite via the file import process, allowing overwriting of critical internal files. This can lead to arbitrary code execution or information exposure as described in the NVD/CVE listings. No specif...

FLY is FUN Aviation Navigation 安全漏洞

FLY is FUN Aviation Navigation is a flight navigation and chart browsing application developed by the Czech company FLY is FUN. Version v35.33 of FLY is FUN Aviation Navigation contains a security vulnerability. This vulnerability stems from an issue with file import processes, where arbitrary...

InTouch Contacts & Caller ID 安全漏洞

InTouch Contacts & Caller ID is a communication management app developed by the Indian company InTouch. It provides features for backup of contacts, synchronization, and caller identification. Version 6.38.1 of InTouch Contacts & Caller ID contains a security vulnerability. This vulnerability ste...

App Craze Voice Recorder 安全漏洞

App Craze Voice Recorder is a mobile recording application developed by App Craze Company, which supports audio recording and management. Version 10.0 of App Craze Voice Recorder contains a security vulnerability. This vulnerability stems from an arbitrary file overwriting during the file import...

CVE-2026-30290

An arbitrary file overwrite vulnerability in InTouch Contacts & Caller ID APP v6.38.1 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

PT-2026-29283

An arbitrary file overwrite vulnerability in DeftPDF Document Translator v54.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

CVE-2026-30285

An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

CVE-2026-30285

An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...

CVE-2026-30279

An arbitrary file overwrite vulnerability in Squareapps LLC My Location Travel Timeline v11.80 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure...