Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/12/05 12:9 a.m.7 views

CVE-2025-65806

The E-POINT CMS eagle.gsam-1169.1 file upload feature improperly handles nested archive files. An attacker can upload a nested ZIP a ZIP containing another ZIP where the inner archive contains an executable file e.g. webshell.php. When the application extracts the uploaded archives, the executabl...

8CVSS8.2AI score0.00262EPSS
Exploits1References1
OSV
OSV
added 2025/12/04 8:16 p.m.15 views

CVE-2025-65806

The E-POINT CMS eagle.gsam-1169.1 file upload feature improperly handles nested archive files. An attacker can upload a nested ZIP a ZIP containing another ZIP where the inner archive contains an executable file e.g. webshell.php. When the application extracts the uploaded archives, the executabl...

4.3CVSS6.4AI score0.00262EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.7 views

PT-2025-49119

Name of the Vulnerable Software and Affected Versions E-POINT CMS version eagle.gsam-1169.1 Description The software’s file upload feature does not properly manage nested archive files. An attacker can upload a nested ZIP archive, containing another ZIP archive with an executable file, such as a...

8CVSS8AI score0.00262EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/12/04 12:0 a.m.20 views

CVE-2025-65806

The E-POINT CMS eagle.gsam-1169.1 file upload feature improperly handles nested archive files. An attacker can upload a nested ZIP a ZIP containing another ZIP where the inner archive contains an executable file e.g. webshell.php. When the application extracts the uploaded archives, the executabl...

0.00262EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/12/04 12:0 a.m.3 views

CVE-2025-65806

The E-POINT CMS eagle.gsam-1169.1 file upload feature improperly handles nested archive files. An attacker can upload a nested ZIP a ZIP containing another ZIP where the inner archive contains an executable file e.g. webshell.php. When the application extracts the uploaded archives, the executabl...

7.8AI score0.00262EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-27001

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00617EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/07/12 12:0 a.m.15 views

RHEL 5 : python (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - python: Nested zip file Zip bomb vulnerability in Lib/zipfile.py CVE-2019-9674 Note that Nessus has not tested for...

5.3CVSS7AI score0.05535EPSS
Exploits0References3
Symantec
Symantec
added 2005/09/21 8:0 a.m.26 views

Symantec Brightmail AntiSpam: Nested Zip File, Denial of Service

SUMMARY Risk Impact Low Remote Access | Yes incoming mail ---|--- Local Access | No Authentication Required | No Exploit publicly available | NA AFFECTED PRODUCTS Product | Version | Build | Solution ---|---|---|--- Symantec Brightmail AntiSpam | 6.0 | 1 | Update Symantec Brightmail AntiSpam | 6....

0.8AI score
Exploits0Affected Software1
Rows per page
Query Builder