Lucene search
K

145 matches found

Snyk
Snyk
added 2026/01/15 3:31 p.m.4 views

Improper Validation of Syntactic Correctness of Input

Overview Affected versions of this package are vulnerable to Improper Validation of Syntactic Correctness of Input due to the improper validation of matrix parameters in URL paths in JAX-RS routing layer. An attacker can gain access to administrative or sensitive endpoints by crafting requests th...

6.3CVSS5.5AI score0.00354EPSS
Exploits0References2
NVD
NVD
added 2026/01/13 11:15 p.m.8 views

CVE-2022-50807

Rejected reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue...

0.00049EPSS
Exploits0
Cvelist
Cvelist
added 2026/01/13 10:51 p.m.25 views

CVE-2022-50807

...

0.00049EPSS
Exploits0
CVE
CVE
added 2026/01/13 10:51 p.m.12 views

CVE-2022-50807

This CVE entry is rejected/not used and does not represent an active vulnerability entry.

6.9AI score0.00049EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.5 views

PT-2026-2364

Name of the Vulnerable Software and Affected Versions Concrete5 CMS version 9.1.3 Description Concrete5 CMS version 9.1.3 is subject to an XPath injection issue. Attackers can manipulate URL path parameters with malicious payloads. By sending crafted requests, attackers may be able to extract...

9.8CVSS6.8AI score0.00049EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.4 views

WordPress plugin Frontend File Manager Plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A security...

7.7CVSS6.7AI score0.00194EPSS
Exploits0References1
NVD
NVD
added 2025/12/19 4:15 p.m.6 views

CVE-2025-67442

EVE-NG 6.4.0-13-PRO is vulnerable to Directory Traversal. The /api/export interface allows authenticated users to export lab files. This interface lacks effective input validation and filtering when processing file path parameters submitted by users...

7.6CVSS0.00483EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/09 12:11 a.m.3 views

CVE-2025-65878

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint /file/showImageByPath does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to th...

7.5CVSS6.7AI score0.00608EPSS
Exploits1References1
OSV
OSV
added 2025/12/05 5:16 p.m.7 views

CVE-2025-65878

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint /file/showImageByPath does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to th...

7.5CVSS5.9AI score0.00608EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/05 12:0 a.m.2 views

CVE-2025-65878

The warehouse management system version 1.2 contains an arbitrary file read vulnerability. The endpoint /file/showImageByPath does not sanitize user-controlled path parameters. An attacker could exploit directory traversal to read arbitrary files on the server's file system. This could lead to th...

6.4AI score0.00608EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-2283

Malware in sbrugna...

7.5CVSS6.4AI score0.0141EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-1289

Malware in sbrugna...

7.5CVSS7.6AI score0.01416EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-0691

Malware in sbrugna...

5.3CVSS6.4AI score0.02857EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2005-0699

Malware in sbrugna...

4.6CVSS6.4AI score0.08072EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-16991

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00429EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-30392

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00574EPSS
Exploits1References1
Snyk
Snyk
added 2025/08/28 10:20 a.m.7 views

Access Control Bypass

Overview @koa/router is a Affected versions of this package are vulnerable to Access Control Bypass. due to the middleware being silently dropped from the execution chain when the router prefix contains path parameters. Depending on what the skipped middleware was supposed to protect, an attacker...

7.3CVSS5.9AI score0.0036EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-1199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Spring Security Spring Security 4.1.x before 4.1.5, 4.2.x before 4.2.4, and 5.0.x before 5.0.1; and Spring Framework 4.3.x before 4.3.14 and 5.0.x before 5.0.3...

5.3CVSS6.6AI score0.02857EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/07/09 5:40 p.m.8 views

Security update for tomcat10

This update for tomcat10 fixes the following issues: Fixed refactor CGI servlet to access resources via WebResources bsc1243815. Fixed limits the total number of parts in a multi-part request and limits the size of the headers provided with each part bsc1244656. Fixed expand checks for webAppMoun...

9.1CVSS8.2AI score0.54877EPSS
Exploits2References14
Snyk
Snyk
added 2025/05/01 6:30 a.m.4 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal via the path parameters in the /demo/static/ endpoint. An attacker can exploit this vulnerability to read arbitrary files from the server’s filesystem by manipulating the request path, potentially exposing sensitive...

8.7CVSS7.6AI score
Exploits0References3
Rows per page
Query Builder