Lucene search
+L

4 matches found

Positive Technologies
Positive Technologies
added 4 days ago7 views

PT-2026-57575

A flaw has been found in Helicone ai-gateway up to 0.2.0-beta.30. This affects the function build target url of the file ai-gateway/src/dispatcher/service.rs of the component AWS Metadata Service. Executing a manipulation of the argument extracted path and query can lead to server-side request...

6.5CVSS6.3AI score0.00333EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/03/21 12:0 a.m.6 views

PT-2026-26927

phpTransformer 2016.9 contains a directory traversal vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the path parameter. Attackers can send requests to the jQueryFileUploadmaster server endpoint with traversal sequences ../../../../../../ to list and...

8.7CVSS5.9AI score0.0109EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/11/11 11:42 p.m.13 views

CVE-2025-43079

The Qualys Cloud Agent included a bundled uninstall script qagentuninstall.sh, specific to Mac and Linux supported versions that invoked multiple system commands without using absolute paths and without sanitizing the $PATH environment. If the uninstall script is executed with elevated privileges...

6.3CVSS7.3AI score0.00166EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/10 12:0 a.m.11 views

PT-2025-46178

Name of the Vulnerable Software and Affected Versions Qualys Cloud Agent affected versions not specified Description The Qualys Cloud Agent includes an uninstall script qagent uninstall.sh for MacOS and Linux that invokes system commands without specifying absolute paths or sanitizing the $PATH...

6.3CVSS7AI score0.00166EPSS
Exploits0References6
Rows per page
Query Builder