Lucene search
+L

267 matches found

nvd
nvd
added yesterday9 views

CVE-2026-8920

Improper Restriction of Communication Channel to Intended Endpoints and External Control of File Name or Path in Aura Wallpaper Service allow a local user to perform file operations by sending crafted commands containing an arbitrary file path and bypassing the service’s path restrictions . On...

8.5CVSS0.0009EPSS
Exploits0References1
cve
cve
added yesterday9 views

CVE-2026-8920

The vulnerability CVE-2026-8920 concerns ASUS Aura Wallpaper Service. It describes Improper Restriction of Communication Channel to Intended Endpoints and External Control of File Name or Path, enabling a local user to perform file operations by sending crafted commands that contain an arbitrary ...

8.5CVSS6.2AI score0.0009EPSS
Exploits0References1
cvelist
cvelist
added yesterday35 views

CVE-2026-8920

Improper Restriction of Communication Channel to Intended Endpoints and External Control of File Name or Path in Aura Wallpaper Service allow a local user to perform file operations by sending crafted commands containing an arbitrary file path and bypassing the service’s path restrictions . On...

8.5CVSS0.0009EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/07/01 3:2 p.m.8 views

CVE-2026-56377

A flaw in ImageMagick’s policy enforcement allows remote attackers to bypass path restrictions within sandboxed conversion services. By circumventing these controls, an attacker can create or truncate files outside permitted security boundaries, leading to unauthorized file manipulation. Mitigati...

4.8CVSS5.9AI score0.00164EPSS
Exploits0References5
redhatcve
redhatcve
added 2026/06/30 2:22 p.m.9 views

CVE-2026-12243

A flaw was found in NLTK. An attacker can exploit a path traversal vulnerability by providing specially crafted input to nltk.data.load or nltk.data.find. This allows the attacker to read arbitrary files accessible to the Python process, leading to information disclosure. The vulnerability arises...

7.5CVSS7.2AI score0.0051EPSS
Exploits1References4
cnnvd
cnnvd
added 2026/06/01 12:0 a.m.15 views

WordPress plugin Gravity Forms 路径遍历漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

9.6CVSS5.4AI score0.005EPSS
Exploits2References1
bdu_fstec
bdu_fstec
added 2026/05/25 12:0 a.m.6 views

The vulnerability of the modular interface between web servers and Rack web applications, related to incorrect path name restrictions for the restricted access catalog, allows attackers to gain unauthorized access to protected information.

The vulnerability of the modular interface between web servers and Rack web applications is related to incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.8CVSS6.7AI score0.00665EPSS
Exploits1References10Affected Software5
patchstack
patchstack
added 2026/05/19 3:55 p.m.15 views

NPM: n8n: Legacy ExecuteWorkflow Node Bypassed File Path Restrictions

NPM: n8n: Legacy ExecuteWorkflow Node Bypassed File Path Restrictions vulnerability discovered by ? in WordPress Npm n8n versions 2.19.3...

5.8AI score
Exploits0References2Affected Software1
redos
redos
added 2026/05/15 12:0 a.m.8 views

ROS-20260515-73-0001

Vulnerability in firebird related to incorrect path name restriction to a restricted directory. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

9.9CVSS5.8AI score0.00692EPSS
Exploits1
nvd
nvd
added 2026/05/11 11:20 p.m.12 views

CVE-2026-43901

Wireshark MCP is an MCP Server that turns tshark into a structured analysis interface, then layers in optional Wireshark suite utilities. In 1.1.5 and earlier, wireshark-mcp exposes a wiresharkexportobjects MCP tool that accepts an attacker-controlled destdir parameter and passes it to tshark's...

6.8CVSS0.00281EPSS
Exploits1References1
euvd
euvd
added 2026/05/11 6:31 p.m.14 views

EUVD-2026-29085

Local file inclusion LFI and server-side request forgery SSRF vulnerabilities in pgAdmin 4 LLM API configuration endpoints. User-supplied apikeyfile and apiurl preferences were passed to the LLM provider clients without validation. An authenticated user could read arbitrary server-side files by...

7.1CVSS6AI score0.00217EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/05/07 8:21 p.m.8 views

CVE-2026-44111

OpenClaw before 2026.4.15 contains an arbitrary file read vulnerability in the QMD backend memoryget function that allows callers to read any Markdown files within the workspace root. Attackers with access to the memory tool can bypass path restrictions by providing arbitrary workspace Markdown...

4.3CVSS5.9AI score0.00226EPSS
Exploits0References1
nvd
nvd
added 2026/05/04 5:16 p.m.24 views

CVE-2026-42811

In plain terms, Apache Polaris is supposed to issue short-lived GCS credentials that only work for one table's files, but a crafted namespace or table name can cause those credentials to work across the configured bucket instead. Apache Polaris builds Google Cloud Storage downscoped credentials b...

9.9CVSS0.00431EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/04/29 12:0 a.m.14 views

TÜBİTAK BİLGEM Pardus Software Center 路径遍历漏洞

TÜBİTAK BİLGEM Pardus Software Center is an application store platform provided by TÜBİTAK BİLGEM in Turkey, which offers functions for software browsing, installation, and update management. Versions of TÜBİTAK BİLGEM Pardus Software Center prior to 1.0.3 contained a path traversal vulnerability...

9.6CVSS5.8AI score0.00326EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2026/04/17 12:0 a.m.5 views

The vulnerability in the web interface of the Cisco Identity Services Engine (ISE) and the Cisco ISE Passive Identity Connector (ISE-PIC), a virtual device for collecting user authentication data, allows a perpetrator to execute arbitrary code.

The vulnerability of the Cisco Identity Services Engine ISE web interface and the Cisco ISE Passive Identity Connector ISE-PIC virtual authentication data collection device is related to an incorrect restriction on the path name to the restricted access directory. Exploiting this vulnerability...

6.8CVSS6.3AI score0.06919EPSS
Exploits0References2Affected Software2
redos
redos
added 2026/04/10 12:0 a.m.8 views

ROS-20260410-73-0008

Vulnerability in libssh related to incorrect path name restriction to a restricted directory. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

6.3CVSS6.4AI score0.00408EPSS
Exploits0
cnnvd
cnnvd
added 2026/04/08 12:0 a.m.10 views

Elastic Logstash 安全漏洞

Elastic Logstash is a set of log analysis and monitoring tools developed by the Dutch company Elastic. There is a security vulnerability in Elastic Logstash, which stems from improper path restrictions. This vulnerability could allow arbitrary file writes and remote code execution...

9.8CVSS6.2AI score0.00545EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2026/04/01 12:0 a.m.7 views

The vulnerability of the Rollup module extractor is related to incorrect restrictions on the path name to the catalog, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Rollup module extractor is related to an incorrect limitation on the path name to the catalog. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS6.1AI score0.01402EPSS
Exploits1References6Affected Software2
cnnvd
cnnvd
added 2026/03/25 12:0 a.m.9 views

WordPress plugin Energox 路径遍历漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

7.7CVSS5.8AI score0.00327EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2026/03/25 12:0 a.m.2 views

The vulnerability of the command-line tool for working with Wheel files is related to incorrect path name restrictions, which allows attackers to escalate their privileges or execute arbitrary code.

The vulnerability of the command-line tool for working with Wheel files is related to an incorrect limitation on the path name to the directory. Exploiting this vulnerability can allow an attacker to increase their privileges or execute arbitrary code...

7.1CVSS7AI score0.00311EPSS
Exploits2References3Affected Software2
Rows per page
Query Builder