Lucene search
K

12 matches found

Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.12 views

PT-2026-39629

Symbolic-link path traversal CWE-61, CWE-22 in pgAdmin 4 File Manager. check access permission used os.path.abspath, which resolves '..' but does not resolve symbolic links, while the subsequent kernel write follows symlinks. An authenticated user could plant a symbolic link inside their own...

8.1CVSS5.8AI score0.00359EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/08 6:43 p.m.14 views

Electerm Security Vulnerability: RCE via malicious SSH server filename in openFileWithEditor

Impact A code execution RCE vulnerability exists in electerm's SFTP open with system editor or "Edit with custom editor" feature. When a user opts to edit a file using open with system editor or open with a custom editor, the filename is passed directly into a command line without sanitization. A...

7.8CVSS6.3AI score0.00167EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/08 2:55 a.m.7 views

CVE-2026-43943 electerm: RCE via malicious SSH server filename in openFileWithEditor

electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.7.9, a code execution RCE vulnerability exists in electerm's SFTP open with system editor or "Edit with custom editor" feature. When a user opts to edit a file using open with system edito...

7.8CVSS6.3AI score0.00167EPSS
Exploits0References3
CVE
CVE
added 2025/09/15 2:3 p.m.20 views

CVE-2023-53167

CVE-2023-53167: In the Linux kernel, tracing_err_log_open() can dereference file->private_data if opened with write permissions and then lseek is used, causing a kernel panic via mutex_lock -> seq_lseek. A fix was applied to tracing: Fix null pointer dereference in tracing_err_log_open() fo...

5.5CVSS6.1AI score0.00146EPSS
Exploits0References6Affected Software1
Microsoft KB
Microsoft KB
added 2024/06/25 12:0 a.m.4 views

June 25, 2024—KB5039299 (OS Build 19045.4598) Preview

None None...

6.1AI score
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2020/06/10 12:0 a.m.46 views

Security update for xawtv (moderate)

openSUSE Security Update: Security update for xawtv Announcement ID: openSUSE-SU-2020:0787-1 Rating: moderate References: 1171655 Cross-References: CVE-2020-13696 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for...

4.4CVSS4.7AI score0.00355EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/06/25 12:0 a.m.18 views

Microsoft Windows: Turn off access to the Store

This policy setting specifies whether to use the Store service for finding an application to open a file with an unhandled file type or protocol association. When a user opens a file type or protocol that is not associated with any applications on the computer, the user is given the choice to...

7AI score
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

Firefox 3.5.3 - Local Download Manager Temp File Creation

No description provided by source. / getunique.c AKA Mozilla Firefox 3.5.3 Local Download Manager Exploit Jeremy Brown [email protected] // jbrownsec.blogspot.com // krakowlabs.com 10.28.2009 When downloading files through Firefox and choosing the Open with option, Firefox will create a...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/10/28 12:0 a.m.32 views

Mozilla Firefox 3.5.3 - Local Download Manager Temp File Creation

Mozilla Firefox 3.5.3 - Local Download Manager Temp File Creation / getunique.c AKA Mozilla Firefox 3.5.3 Local Download Manager Exploit Jeremy Brown [email protected] // jbrownsec.blogspot.com // krakowlabs.com 10.28.2009 When downloading files through Firefox and choosing the "Open with"...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2009/10/28 12:0 a.m.33 views

Mozilla Firefox 3.5.3 - Local Download Manager Temp File Creation

/ getunique.c AKA Mozilla Firefox 3.5.3 Local Download Manager Exploit Jeremy Brown [email protected] // jbrownsec.blogspot.com // krakowlabs.com 10.28.2009 When downloading files through Firefox and choosing the "Open with" option, Firefox will create a temporary file in the form of RANDOM.pa...

7.4AI score
Exploits0
0day.today
0day.today
added 2009/10/28 12:0 a.m.28 views

Firefox 3.5.3 local download manager temp file creation

Exploit for unknown platform in category local exploits ======================================================= Firefox 3.5.3 local download manager temp file creation ======================================================= Title: Firefox 3.5.3 local download manager temp file creation CVE-ID:...

6.8AI score
Exploits0
seebug.org
seebug.org
added 2009/10/28 12:0 a.m.31 views

Firefox 3.5.3 local download manager temp file creation

No description provided by source. / getunique.c AKA Mozilla Firefox 3.5.3 Local Download Manager Exploit Jeremy Brown [email protected] // jbrownsec.blogspot.com // krakowlabs.com 10.28.2009 When downloading files through Firefox and choosing the "Open with" option, Firefox will create a...

7.1AI score
Exploits0
Rows per page
Query Builder