Lucene search
K

39 matches found

CNNVD
CNNVD
added 2026/03/09 12:0 a.m.5 views

NLTK 安全漏洞

NLTK is an open-source natural language toolkit developed by NLTK. It is used to support research and development in natural language processing. Version 3.9.2 of NLTK contains a security vulnerability, which stems from the improper validation of input paths in the filestring function of the...

8.6CVSS7.4AI score0.00428EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/27 4:41 p.m.7 views

CVE-2026-24488 OpenEMR Vulnerable to Arbitrary File Exfiltration via Fax Endpoint

OpenEMR is a free and open source electronic health records and medical practice management application. In versions up to and including 8.0.0, an arbitrary file exfiltration vulnerability in the fax sending endpoint allows any authenticated user to read and transmit any file on the server...

6.5CVSS6AI score0.00399EPSS
Exploits1References2
NVD
NVD
added 2026/02/19 7:22 p.m.5 views

CVE-2026-23621

GFI MailEssentials AI versions prior to 22.4 contain an arbitrary directory existence enumeration vulnerability in the ListServer.IsPathExist web method exposed at /MailEssentials/pages/MailSecurity/ListServer.aspx/IsPathExist. An authenticated user can supply an unrestricted filesystem path via...

5.3CVSS0.00244EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/24 12:0 a.m.6 views

WordPress Plugin Administrative Shortcodes Security Vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There ar...

7.5CVSS5.8AI score0.00678EPSS
Exploits0References5
Snyk
Snyk
added 2025/11/01 6:37 a.m.3 views

Command Injection

Overview Affected versions of this package are vulnerable to Command Injection due to insufficient sanitization of the inputpath for convertdoctopdf. An attacker can execute arbitrary commands by injecting shell metacharacters such as ;, &, |, etc. when specifying the doc file path. Remediation...

9.8CVSS7.9AI score
Exploits0References3
OSV
OSV
added 2025/08/25 2:32 p.m.4 views

GHSA-RX7M-68VC-PPXH PhpSpreadsheet vulnerable to SSRF when reading and displaying a processed HTML document in the browser

Product: PhpSpreadsheet Version: 3.8.0 CWE-ID: CWE-918: Server-Side Request Forgery SSRF CVSS vector v.3.1: 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS vector v.4.0: 8.7 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N Description: SSRF occurs when a processed HTML document is read and...

8.7CVSS6.3AI score0.00741EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/07/20 9:59 a.m.12 views

CVE-2025-6233

Mattermost versions 10.8.x = 10.8.1, 10.7.x = 10.7.3, 10.5.x = 10.5.7, 9.11.x = 9.11.16 fail to sanitize input paths of file attachments in the bulk import JSONL file, which allows a system admin to read arbitrary system files via path traversal...

6.8CVSS7.2AI score0.0038EPSS
Exploits0References1
CVE
CVE
added 2025/07/18 9:9 a.m.18 views

CVE-2025-6233

CVE-2025-6233 affects Mattermost Server versions 10.8.x up to 10.8.1, 10.7.x up to 10.7.3, 10.5.x up to 10.5.7, and 9.11.x up to 9.11.16. It arises from failing to sanitize input paths of file attachments in the bulk import JSONL file, enabling a system administrator to read arbitrary system file...

6.8CVSS6.6AI score0.0038EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2025/06/17 12:0 a.m.2 views

SAP NetWeaver Visual Composer Directory Traversal Vulnerability

SAP NetWeaver Visual Composer is a graphical modeling environment in the SAP NetWeaver platform for rapid development and deployment of composite applications. A directory traversal vulnerability exists in SAP NetWeaver Visual Composer, which stems from insufficient input path validation, and can...

7.6CVSS6AI score0.00594EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:50 p.m.7 views

CVE-2020-21525

Halo V1.1.3 is affected by: Arbitrary File reading. In an interface that reads files in halo v1.1.3, a directory traversal check is performed on the input path parameter, but the startsWith function can be used to bypass it...

7.5CVSS6.9AI score0.01917EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:19 p.m.6 views

CVE-2020-21526

An Arbitrary file writing vulnerability in halo v1.1.3. In an interface to write files in the background, a directory traversal check is performed on the input path parameter, but the startsWith function can be used to bypass it...

9.8CVSS6.9AI score0.0189EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 5:19 a.m.7 views

CVE-2019-5608

In FreeBSD 12.0-STABLE before r350648, 12.0-RELEASE before 12.0-RELEASE-p9, 11.3-STABLE before r350650, 11.3-RELEASE before 11.3-RELEASE-p2, and 11.2-RELEASE before 11.2-RELEASE-p13, the ICMPv6 input path incorrectly handles cases where an MLDv2 listener query packet is internally fragmented acro...

9.8CVSS6.7AI score0.02128EPSS
Exploits0References1
Snyk
Snyk
added 2025/05/01 8:41 p.m.2 views

Incorrect Authorization

Overview github.com/open-policy-agent/opa/server is an open source, general-purpose policy engine that enables unified, context-aware policy enforcement across the entire stack. Affected versions of this package are vulnerable to Incorrect Authorization via the HTTP Data API. An attacker can...

8.5CVSS7.2AI score0.0036EPSS
Exploits0References2
Redos
Redos
added 2025/04/03 12:0 a.m.10 views

ROS-20250403-09

Apache Tomcat application server vulnerability is related to accepting input path data as an internal point without verification. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information and execute arbitrary code. unauthorized access to...

10CVSS8.2AI score0.99945EPSS
Exploits46
OSV
OSV
added 2024/08/21 12:6 a.m.7 views

CVE-2024-43878 xfrm: Fix input error path memory access

In the Linux kernel, the following vulnerability has been resolved: xfrm: Fix input error path memory access When there is a misconfiguration of input state slow path KASAN report error. Fix this error. west login: 52.987278 eth1: renamed from veth11 53.078814 eth1: renamed from veth21 53.181355...

7.1CVSS6.3AI score0.00211EPSS
Exploits0References5
OSV
OSV
added 2024/05/16 9:33 a.m.2 views

GHSA-PWC9-Q4HJ-PG8G LoLLMS Command Injection vulnerability

A vulnerability in the parisneo/lollms, specifically in the /unInstallbinding endpoint, allows for arbitrary code execution due to insufficient sanitization of user input. The issue arises from the lack of path sanitization when handling the name parameter in the unInstallbinding function, allowi...

9.8CVSS9.7AI score0.00916EPSS
Exploits0References4
NVD
NVD
added 2020/09/30 6:15 p.m.21 views

CVE-2020-21525

Halo V1.1.3 is affected by: Arbitrary File reading. In an interface that reads files in halo v1.1.3, a directory traversal check is performed on the input path parameter, but the startsWith function can be used to bypass it...

7.5CVSS0.01917EPSS
Exploits1References1
NVD
NVD
added 2019/08/30 9:15 a.m.17 views

CVE-2019-5608

In FreeBSD 12.0-STABLE before r350648, 12.0-RELEASE before 12.0-RELEASE-p9, 11.3-STABLE before r350650, 11.3-RELEASE before 11.3-RELEASE-p2, and 11.2-RELEASE before 11.2-RELEASE-p13, the ICMPv6 input path incorrectly handles cases where an MLDv2 listener query packet is internally fragmented acro...

9.8CVSS9.3AI score0.02128EPSS
Exploits0References2
CNVD
CNVD
added 2017/07/25 12:0 a.m.4 views

Tilde CMS class.SystemAction.php file SQL injection vulnerability

Tilde CMS is a web content management system CMS. A SQL injection vulnerability exists in the class.SystemAction.php file in Tilde CMS version 1.0.1. A remote attacker can exploit this vulnerability by sending a POST request to /actionphp/action.input.php with the 'id' parameter to execute...

9.8CVSS10AI score0.01097EPSS
Exploits1References1
Rows per page
Query Builder