Lucene search
+L

25 matches found

cvelist
cvelist
added 6 days ago32 views

CVE-2026-56813 Cookie attribute injection in Plug.Conn.Cookies.encode/2

Improper Neutralization of Parameter/Argument Delimiters vulnerability in elixir-plug plug allows an attacker to inject or override HTTP cookie attributes. The Plug.Conn.Cookies.encode/2 function in lib/plug/conn/cookies.ex builds the Set-Cookie response header by interpolating the cookie value a...

2.1CVSS0.00146EPSS
Exploits0References4
nessus
nessus
added 2026/06/06 12:0 a.m.13 views

EulerOS Virtualization 2.12.1 : libssh (EulerOS-SA-2026-2080)

According to the versions of the libssh package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A weakness has been identified in libssh up to 0.11.3. The impacted element is the function...

8.2CVSS5.9AI score0.00631EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2026/05/29 12:0 a.m.19 views

PT-2026-45033

Name of the Vulnerable Software and Affected Versions Ouroboros versions prior to 0.39.0 Description A Remote Code Execution issue exists when the software loads a .env file from the current working directory. An attacker can include a malicious script in a repository and use environment variable...

8.6CVSS6.2AI score0.00557EPSS
Exploits0References9
github
github
added 2026/05/04 6:30 p.m.16 views

Apache Polaris has an Improper Input Validation Issue

Apache Polaris can issue broad temporary "vended" storage credentials during staged table creation before the effective table location has been validated or durably reserved. Those temporary credentials are meant to limit the scope of accessible table data and metadata, but this scope limitation...

9.9CVSS5.7AI score0.00355EPSS
Exploits0References6Affected Software1
nvd
nvd
added 2026/05/04 5:16 p.m.14 views

CVE-2026-42809

Apache Polaris can issue broad temporary "vended" storage credentials during staged table creation before the effective table location has been validated or durably reserved. Those temporary credentials are meant to limit the scope of accessible table data and metadata, but this scope limitation...

9.9CVSS0.00355EPSS
Exploits0References2
snyk
snyk
added 2026/03/30 6:52 p.m.4 views

Untrusted Search Path

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Untrusted Search Path in the installation of local plugins or hooks, specifically when executing npm install --omit=dev --silent --ignore-scripts within a staged directory that may contai...

9.2CVSS6.4AI score0.00136EPSS
Exploits1References2
osv
osv
added 2026/03/26 6:41 p.m.2 views

GHSA-MR6Q-RP88-FX84 Astro: Unauthenticated Path Override via `x-astro-path` / `x_astro_path`

Summary The @astrojs/vercel serverless entrypoint reads the x-astro-path header and xastropath query parameter to rewrite the internal request path, with no authentication whatsoever. On deployments without Edge Middleware, this lets anyone bypass Vercel's platform-level path restrictions entirel...

6.5CVSS6.7AI score0.00331EPSS
Exploits1References7
github
github
added 2026/03/26 6:41 p.m.8 views

Astro: Unauthenticated Path Override via `x-astro-path` / `x_astro_path`

Summary The @astrojs/vercel serverless entrypoint reads the x-astro-path header and xastropath query parameter to rewrite the internal request path, with no authentication whatsoever. On deployments without Edge Middleware, this lets anyone bypass Vercel's platform-level path restrictions entirel...

9.1CVSS5.9AI score0.00331EPSS
Exploits1References7Affected Software1
cve
cve
added 2026/03/24 6:40 p.m.23 views

CVE-2026-33768

Astro: Unauthenticated Path Override via x-astro-path/x_astro_path affects Astro 5.18.1 + @astrojs/vercel 9.0.4 and Astro 6.0.3 + @astrojs/vercel 10.0.0, with patch in 10.0.2. The vulnerable code rewrites the internal request path from a caller-supplied header or query parameter without authentic...

9.1CVSS5.8AI score0.00331EPSS
Exploits1References4Affected Software1
osv
osv
added 2026/03/24 6:40 p.m.8 views

CVE-2026-33768 Astro: Unauthenticated Path Override via `x-astro-path` / `x_astro_path`

Astro is a web framework. Prior to version 10.0.2, the @astrojs/vercel serverless entrypoint reads the x-astro-path header and xastropath query parameter to rewrite the internal request path, with no authentication whatsoever. On deployments without Edge Middleware, this lets anyone bypass Vercel...

6.5CVSS5.8AI score0.00331EPSS
Exploits1References6
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-3252

Malicious code in bioql PyPI...

6.5CVSS7.1AI score0.58061EPSS
Exploits0References12
nessus
nessus
added 2025/08/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-14773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Http Foundation in Symfony 2.7.0 through 2.7.48, 2.8.0 through 2.8.43, 3.3.0 through 3.3.17, 3.4.0 through 3.4.13, 4.0.0 through...

6.5CVSS7.4AI score0.58061EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/08/20 5:33 p.m.19 views

CVE-2025-55282

aiven-db-migrate is an Aiven database migration tool. Prior to 1.0.7, there is a privilege escalation vulnerability that allows a user to elevate to superuser inside PostgreSQL databases during a migration from an untrusted source server. By exploiting a lack of searchpath restriction, an attacke...

9.1CVSS6.6AI score0.00675EPSS
Exploits0References1
vulncheck_kev
vulncheck_kev
added 2025/08/17 12:0 a.m.8 views

VulnCheck KEV: CVE-2023-0159

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract function when loading templates, allowing an unauthenticated attacker to override the template path to read arbitrary files from the hosts file system. This may ...

7.5CVSS5.8AI score0.55736EPSS
In wildExploits3References86
redhatcve
redhatcve
added 2025/05/23 2:53 a.m.10 views

CVE-2023-0159

The Extensive VC Addons for WPBakery page builder WordPress plugin before 1.9.1 does not validate a parameter passed to the php extract function when loading templates, allowing an unauthenticated attacker to override the template path to read arbitrary files from the hosts file system. This may ...

7.5CVSS6.9AI score0.55736EPSS
Exploits3References1
cnnvd
cnnvd
added 2024/04/03 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from overriding a wrong path...

7.8CVSS6.7AI score0.00276EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2023/02/13 12:0 a.m.8 views

PT-2023-8557 · WordPress · Extensive Vc Addons

Name of the Vulnerable Software and Affected Versions: Extensive VC Addons for WPBakery page builder WordPress plugin versions prior to 1.9.1 Description: The issue is related to incorrect validation of a parameter passed to the php extract function when loading templates. This allows an...

7.8CVSS7.8AI score0.55736EPSS
Exploits3References5
bdu_fstec
bdu_fstec
added 2019/06/06 12:0 a.m.8 views

The vulnerability of the HttpFoundation component in the Symfony framework, related to errors in handling HTTP headers, allows attackers to compromise the integrity of protected data.

The vulnerability of the HttpFoundation component in the Symfony framework is related to the support for the IIS header, which allows users to override the URL path through the X-Original-URL or X-Rewrite-URL headers. Exploiting this vulnerability enables an attacker to compromise the integrity o...

6.8CVSS7.1AI score0.58061EPSS
Exploits0References6Affected Software3
nvd
nvd
added 2019/03/27 7:30 p.m.34 views

CVE-2019-1010257

An Information Disclosure / Data Modification issue exists in article2pdfgetfile.php in the article2pdf Wordpress plugin 0.24, 0.25, 0.26, 0.27. A URL can be constructed which allows overriding the PDF file's path leading to any PDF whose path is known and which is readable to the web server can ...

9.1CVSS9AI score0.04361EPSS
Exploits3References4
osv
osv
added 2019/03/27 7:30 p.m.4 views

CVE-2019-1010257

An Information Disclosure / Data Modification issue exists in article2pdfgetfile.php in the article2pdf Wordpress plugin 0.24, 0.25, 0.26, 0.27. A URL can be constructed which allows overriding the PDF file's path leading to any PDF whose path is known and which is readable to the web server can ...

9.1CVSS5.8AI score0.04361EPSS
Exploits3References4
Rows per page
Query Builder